Our security roadmap has 802.1x port-based authentication on the horizon, and I thought I'd put the question out: What's your current favorite NAC solution?
Currently we run a pair of Microsoft NPS servers for our RADIUS authentication, but I've heard that trying to do port-based authentication with NPS is a massive pain in the arse. I've also heard that Cisco ISE is a monster to try and implement...
So I'm currently looking at Aruba Clearpass, Forescount, and PacketFence (with support); but having no experience with any of these products I'm interested to know what you guys think. Obviously we'll do a proper POC, but I don't want to waste time on a stinker. 😄
No comments:
Post a Comment