Network Access Control at ESF:
Network Access Control (NAC) is a network security system that allows or denies access to a network based on a set of policies or standards. If there is a policy or standard violation, a device (PC, Mac, wireless device, etc.) can be isolated until the issue is rectified. The ultimate purpose of the campus NAC system is to secure the network and those using it by ensuring that the devices connected meet minimum standards.
Common scenarios for the use of such a system include:
- Isolate unknown devices/systems until they can be registered/bound to an individual using a valid username and password. Only valid users can connect devices to any given network when NAC is enforced. For guest access to wired systems, please e-mail the CNS Helpdesk. Guest access on the ESF wireless network is currently not offered.
- Isolate a device when its operating system or software becomes out-dated.
When the system has been updated, it is removed from isolation and returned to normal service.
- Isolate a device/system when its security software becomes out-dated.
When the software has been updated, the device/system is removed from isolation and returned to normal service.
- Isolate a device/system when a malware infection (spyware, trojan, virus, etc.) is detected.
When the system has been cleaned of infection, it is removed from isolation and returned to normal service.
- Isolate a device/system when a user policy violation had been encountered.
The bottom line is that if your registered device stays up-to-date in terms of both operating system updates and security software updates, you will maintain a connection to the ESF Campus Network.
NAC system components:
The typical NAC system consists of a combination of network hardware, user software, device standards, and user policies.
It is important to note that the Network Registration process and the Network Access Control System, including the Bradford Persistent Agent, in no way monitor, or facilitate monitoring, the activities of individual users on the ESF Campus.