We're trying to spot machines that haven't been used on the network for a few months as we're going thru an upgrade programme. There's users out there that occassionally plug stuff in that been sat in a cupboard gathering dust and we'd like them to stop it!
What we want to achieve is the blocking of network access for any machine that has not accessed the network in the previous 3 months or more.
This will achieve two things:-
1) It will improve security as any outdated machine will be blocked.
2) It will allow us to identify legitimate machines because the owners will "scream" that they cannot access the network, and therefore give us the opportunity to interrogate them as to why they haven't logged in before, and what the machine is used for.
Can ciscoworks do this? We can run reports of unused ports but we dont know from these reports how long the ports have been unused for.
thanks for reading this