Hi.
I'm in the market for an NAC solution for a simple network setup.
Here's the overview:
- Flat network/subnet. Cannot be changed at this time.
- Switches are not capable for utilizing VLANs. Switches cannot be changed out at this time.
- DHCP Server is Windows-based.
Here is what we are hoping to achieve:
- Prevent unauthorized devices from getting accessing the network (essentially, no DHCP for unauthorized devices)
- Should work for both wired and wireless devices
- Allow connectivity for devices pre-registered by MAC address (aware that MAC addresses can be spoofed)
- Allow for BYOD with sign-in portal based on Active Directory login credentials
Currently looking at Aruba Clearpass, but unsure if possible to implement this on a flat network, unless the Clearpass (or another NAC solution) was capable of intercepting DHCP requests and forwarding them to the DHCP server once they were authenticated.
No comments:
Post a Comment