I want to deploy NAC at a Central site to protect the main Servers and resources from remote sites that have multiple users/contractors. The remote site will have their own DC's and the users may log in locally and make use of local file repositories. I want to apply NAC when the user attempts to connect to resources that are located at the Central site.
Will the user at the remote site who has already logged into AD be prompted for login again by NAC or can the NAC use the existing credentials of the user connection, e.g. SSO.