[c-nsp] NAC for Thin-Clients?
Scott Keoseyan
scott at labyrinth.org
Sat Jul 26 23:40:25 EDT 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
If it's a thinclient, isn't it running firmware or something else
that you are probably not going to be able to load anything onto (the
endpoint) component anyways?
I would look into some sort of authentication to lock the ports
down. If there's no real O/S on the client endpoint then there's
little point in loading any kind of posture-checking... there won't
be a posture to check.
Scott
On Jul 25, 2008, at 1:25 PM, Felix Nkansah wrote:
> Hi,
>
> An enterprise customer of mine is replacing all workstations/PCs in
> their
> network with thin-clients.
>
> They require a NAC-like solution, one that provides posture
> assessments and
> remediation for the thin-client users.
>
> AFAIK, Cisco's present NAC offering doesnt seem to fit into this
> requirement
> here (posture assessment for terminal services-like workstations). The
> required solution would have to assess the various user virtual
> systems for
> compliance (patches, viruses, etc) before allowing them to operate.
>
> Please let me know if you have deployed a posture assessment and
> remediation
> solution for this kind of scenario?
>
> Links would also be appreciated.
>
> Regards,
>
> Felix
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
iEYEARECAAYFAkiL7ikACgkQA7TpMPAlvEdtZwCfRfnR2anUOaFp1Mj0LbwBUQO3
f+cAn1JJQ+0cQKXJYXDo4q/qhU1FHNUK
=zsAP
-----END PGP SIGNATURE-----
More information about the cisco-nsp
mailing list