I am planning to implement NAC at my customer site, I have only one NAM and one NAS, the customer has WLC, IP Telephony, campus users and VPN customers.
what is the best mode that can fit implementing the above four areas ? is it possible that one mode can serve all of them ?
I have understood that implementing posture assessment for VPN customers means that I should go for OOB+L3
if I want to implement the posture assessment for the campus users then it is recommended to go for OOB+VG since the subnet of the authentication vlan and the trusted VLAN will not change.
If I want to assess the WLC users then I have to go for IB mode , but if I go for inband mode then I will create bottle neck in my customer's network.
should I tell my customer that he needs to buy another NAS to be dedicated as IB for the WLC users ?
I am confused and I need your advise.