Wednesday, September 18, 2019

Best practices to lock down a network

Hi!

We have a small NOC team of 10. Each connects to the NOC network VLAN via WiFi or Ethernet. Currently, there is not much security in regards to what devices can plug into the ethernet ports or connect to the Wifi (as long as they have the password). Each NOC engineer needs a static IP address so that they can RDP to their machine from outside the network via a VPN.

Is there anything I can do to implement more security? Would Active Directory allow us to lock down what users can connect to what WiFi? Is there anything I can configure on our cisco switches which can detect a user profile/MAC address and put them into a certain VLAN?

Keen to find out!



No comments:

Post a Comment