[c-nsp] NAC for Thin-Clients?

Scott Keoseyan scott at labyrinth.org
Sat Jul 26 23:40:25 EDT 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

If it's a thinclient, isn't it running firmware or something else  
that you are probably not going to be able to load anything onto (the  
endpoint) component anyways?

I would look into some sort of authentication to lock the ports  
down.  If there's no real O/S on the client endpoint then there's  
little point in loading any kind of posture-checking... there won't  
be a posture to check.


Scott

On Jul 25, 2008, at 1:25 PM, Felix Nkansah wrote:

> Hi,
>
> An enterprise customer of mine is replacing all workstations/PCs in  
> their
> network with thin-clients.
>
> They require a NAC-like solution, one that provides posture  
> assessments and
> remediation for the thin-client users.
>
> AFAIK, Cisco's present NAC offering doesnt seem to fit into this  
> requirement
> here (posture assessment for terminal services-like workstations). The
> required solution would have to assess the various user virtual  
> systems for
> compliance (patches, viruses, etc) before allowing them to operate.
>
> Please let me know if you have deployed a posture assessment and  
> remediation
> solution for this kind of scenario?
>
> Links would also be appreciated.
>
> Regards,
>
> Felix
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)

iEYEARECAAYFAkiL7ikACgkQA7TpMPAlvEdtZwCfRfnR2anUOaFp1Mj0LbwBUQO3
f+cAn1JJQ+0cQKXJYXDo4q/qhU1FHNUK
=zsAP
-----END PGP SIGNATURE-----


More information about the cisco-nsp mailing list