NAC Manager provides secure, policy-based management for Extreme Networks Mobile IAM and Extreme Access Control solutions. It configures and manages Mobile IAM and Access Control gateways, provides user to device location mapping services, generates network endpoint audit reports and interfaces with other security management applications.
Contact your sales representative for information on obtaining an Extreme Management Center software license.
NAC Manager Features
- NAC Configuration
- The NAC Configuration lets you manage the end user connection experience and control network access based on a variety of criteria including authentication, user name, MAC address, time of day, and location. NAC Manager comes with a default NAC Configuration which is automatically assigned to your Access Controlengines. You can use this default configuration as is, or make changes to the default configuration, if desired.
- Assessment/Remediation
- NAC Manager supports agent-less or agent-based security posture assessment of endpoints. NAC Manager uses assessment servers to assess and audit connecting end-systems and provide details about an end-system's patch levels, running processes, anti-virus definitions, device type, operating system, and other information critical in determining an end-system's security compliance. End-systems that fail assessment can be dynamically quarantined with restrictive network access to prevent security threats from entering the network.
-
Assisted remediation is a process that informs end users when their end-systems are quarantined due to network security policy non-compliance, and allows end users to safely remediate their non-compliant end-systems without assistance from IT operations. Once the remediation steps are successfully performed and the end-system is compliant with network security policy, the appropriate network resources are allocated to the end-system, again without the intervention of IT operations.
- End-System Monitoring
- Monitor end-system events and view the health results from an end-system's latest assessment. Quickly view historical and last-known connection states for each end-system, and obtain information on security risks found on an end-system during an assessment.
- Web-based Dashboard
- The NAC Manager Dashboard feature provides three web-based views of end-system data including a selection of reports that provide an overview of end-system connection and assessment information along with detailed end-system event and health result information.
- Registration
- Registration forces any new end-system connected on the network to provide the user's identity in a web page form before being allowed access to the network. End users are automatically provisioned network access on demand without time-consuming and costly network infrastructure reconfigurations. In addition, IT operations gains visibility into the end-systems and their associated users (e.g. guests, students, contractors, and employees) on the network.
- Notifications
- Notifications provide the ability for NAC Manager to notify administrators or helpdesk personnel of important information through email, trap, or syslog messages. These notifications help administrators understand what is going on in their Access Control system on a real-time basis. For example, NAC Manager can be configured to send a notification when a new end-system is learned on the network, when a MAC lock is violated, or when a new MAC address is registered on the network.
- Leverages Automated Security Manager
- Automated Security Manager (ASM) can be configured to notify NAC Manager in response to a real-time security threat from an end-system on the network. NAC Manager automatically adds the end-system's MAC address to the Blacklist end-system group, effectively putting the end-system in quarantine and preventing the end-system from accessing the network from any location.
Document Version
The following table displays the revision history for the NAC Manager Help documentation.
| Date | Revision Number | Description |
|---|---|---|
| 06-17 | 7.1 Revision -00 | NetSight 6.4 release |
| 07-15 | 6.3 Revision -00 | NetSight 6.3 release |
| 01-15 | 6.2 Revision -00 | NetSight 6.2 release |
| 06-14 | 6.1 Revision -00 | NetSight 6.1 release |
| 02-14 | 6.0 Revision -00 | NetSight 6.0 release |
PN: 9034984-01