Implementation av Network Admission Control

Implementation av Network Admission Control

This examination work is about implementation of Cisco Systems Network Admission Control (NAC) within a leading IT-company in region of Jönköping. NAC is a technique that is used for securing the internal network from the inside. NAC can verify that the client who connects to the network has the lat...

Full description

Bibliographic Details
Main Authors: Sandqvist, Mattias, Johansson, Robert
Format: Others
Language:Swedish
Published: Tekniska Högskolan, Högskolan i Jönköping, JTH, Data- och elektroteknik 2007
Subjects:
NAC
CAA
CAS
CAM
Cisco
Computer Engineering
Datorteknik
Online Access:http://urn.kb.se/resolve?urn=urn:nbn:se:hj:diva-901
id ndltd-UPSALLA1-oai-DiVA.org-hj-901
record_format oai_dc
spelling ndltd-UPSALLA1-oai-DiVA.org-hj-9012018-01-13T05:15:38ZImplementation av Network Admission ControlsweSandqvist, MattiasJohansson, RobertTekniska Högskolan, Högskolan i Jönköping, JTH, Data- och elektroteknikTekniska Högskolan, Högskolan i Jönköping, JTH, Data- och elektroteknik2007NACCAACASCAMCiscoComputer EngineeringDatorteknikThis examination work is about implementation of Cisco Systems Network Admission Control (NAC) within a leading IT-company in region of Jönköping. NAC is a technique that is used for securing the internal network from the inside. NAC can verify that the client who connects to the network has the latest antivirus updates and latest operative system hotfixes. Clients who don’t meet the criteria can be placed in quarantine VLAN where they only have access to the update servers. There are also functions that handle VLAN assignment for users. The assignment where to produce a solution for an implementation of NAC in the company’s computer network. The questions that where asked are the following, if and how could NAC be implemented in the company’s computer network. An analysis where made of the company’s computer network, to see if the computer network meet the requirements for implementing NAC. The result of this analysis showed that there where a loss of functions needed for a working NAC solution. The computer network where rebuild from scratch to meet the new demands for NAC. After completion of the new computer network the NAC solution were taking shape. This was made in consultation with the company to get a clear picture of the needs. The result of the discussion lead to a so called “Out-of-band virtual gateway” solution. The solution builds on that the client is placed in an authentication VLAN when connecting to the computer network, after that an authentication process begins. During this process the client is checked to verify that the criteria’s are fulfilled, if so the client is moved to his access VLAN. These solutions increase the internal security in the computer network and reduce the risks for virus spreading within the network. Student thesisinfo:eu-repo/semantics/bachelorThesistexthttp://urn.kb.se/resolve?urn=urn:nbn:se:hj:diva-901application/pdfinfo:eu-repo/semantics/openAccess
collection NDLTD
language Swedish
format Others
sources NDLTD
topic NAC
CAA
CAS
CAM
Cisco
Computer Engineering
Datorteknik
spellingShingle NAC
CAA
CAS
CAM
Cisco
Computer Engineering
Datorteknik
Sandqvist, Mattias
Johansson, Robert
Implementation av Network Admission Control
description This examination work is about implementation of Cisco Systems Network Admission Control (NAC) within a leading IT-company in region of Jönköping. NAC is a technique that is used for securing the internal network from the inside. NAC can verify that the client who connects to the network has the latest antivirus updates and latest operative system hotfixes. Clients who don’t meet the criteria can be placed in quarantine VLAN where they only have access to the update servers. There are also functions that handle VLAN assignment for users. The assignment where to produce a solution for an implementation of NAC in the company’s computer network. The questions that where asked are the following, if and how could NAC be implemented in the company’s computer network. An analysis where made of the company’s computer network, to see if the computer network meet the requirements for implementing NAC. The result of this analysis showed that there where a loss of functions needed for a working NAC solution. The computer network where rebuild from scratch to meet the new demands for NAC. After completion of the new computer network the NAC solution were taking shape. This was made in consultation with the company to get a clear picture of the needs. The result of the discussion lead to a so called “Out-of-band virtual gateway” solution. The solution builds on that the client is placed in an authentication VLAN when connecting to the computer network, after that an authentication process begins. During this process the client is checked to verify that the criteria’s are fulfilled, if so the client is moved to his access VLAN. These solutions increase the internal security in the computer network and reduce the risks for virus spreading within the network.
author Sandqvist, Mattias
Johansson, Robert
author_facet Sandqvist, Mattias
Johansson, Robert
author_sort Sandqvist, Mattias
title Implementation av Network Admission Control
title_short Implementation av Network Admission Control
title_full Implementation av Network Admission Control
title_fullStr Implementation av Network Admission Control
title_full_unstemmed Implementation av Network Admission Control
title_sort implementation av network admission control
publisher Tekniska Högskolan, Högskolan i Jönköping, JTH, Data- och elektroteknik
publishDate 2007
url http://urn.kb.se/resolve?urn=urn:nbn:se:hj:diva-901
work_keys_str_mv AT sandqvistmattias implementationavnetworkadmissioncontrol
AT johanssonrobert implementationavnetworkadmissioncontrol
_version_ 1718608354913288192

Similar Items