Cisco NAC capabilities

Unanswered Question
Aug 30th, 2007

I'm tryin to determine if Cisco's NAC appliance would be able to stop someone from plugging in a Wireless AP and get it working as an access point or bridge. Is there a configuration or option within the NAC to do this?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
wbreitzke Wed, 09/05/2007 - 06:50

This document describes how to integrate the Cisco Clean Access (CCA) solution with a Cisco Wireless LAN Controller (referred to hereafter as the controller) to provide guest user access management and posture assessment features for wireless networks. A similar configuration is designed for non-guest user access and posture assessment.

rtrunk Sun, 09/09/2007 - 17:05

I can't think of a way to prevent rogue APs with NAC. It's designed to verify host configuration, not infrastructure devices.

There are however, many other ways to detect rogue APs, from simple to complex, and cheap to hideously expensive.



This Discussion