ACS Server hardware build for NAC/TACACS deployment
We are in the pilot stage of a NAC v2 Framework rollout for our 4000 seat network and have funding available to purchase a high spec server to be deployed as the primary ACS box. The server will also handle our TACACS requirements for accessing network devices. I know I could simply go with the Cisco recommended build, however with a view to the future of managing NAC requests for 4000 PCs, I am keen to over spec the box where this would be useful. I have options to increase RAM, Processors and Disk configuration. Which of these will be advantageous?
Re: ACS Server hardware build for NAC/TACACS deployment
Enforce your organization's security policies on all devices seeking network access. Cisco Network Admission Control (NAC) allows only compliant and trusted endpoint devices, such as PCs, servers, and PDAs, onto the network, restricting the access of noncompliant devices and thereby limiting the potential damage from emerging security threats and risks. Cisco NAC gives organizations a powerful, roles-based method of preventing unauthorized access and improving network resiliencyhttp://www.cisco.com/en/US/products/sw/secursw/ps2086/index.html.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...