Network Access Control (NAC)
NAC ensures that every remote device is fully patched so that they are not vulnerable to attacks. The key components of NAC are as follows:
- Agents: Every device subject to NAC has an agent installed so that health assessments can be carried out by the Health Authority (HAuth). There are two types of agents:
- Permanent agents: These agents are installed on the host device, providing continuous monitoring and assessment
- Dissolvable agents: Also known as “temporary” or “agentless” agents, these are deployed for single-use health checks, allowing for flexibility in assessment without long-term installations
- Health authority: Following user authentication, the HAuth diligently inspects the client device’s registry to determine whether it is fully patched. A device that is up to date with all the necessary patches is labeled “compliant” and granted seamless access to the LAN. If a device has missing patches...