If you were to choose between NAC+CAA and an 802.1X solution (CTA+CSSC), which one is more cost effective? Do they achieve the same goal? Both NAC and 802.1X can do Authentication, Authorization, and Posture Assessment. I'm trying to understand why would someone choose one or the other.
ACS is not required for the NAC Appliance to perform SSO or Posture Validation.
The NAC Manager can be configured to talk directly to the AD server via Kerberos. The AD Server needs the ktpass.exe command executed with certain parameters for this to work. Please let me know if you need these details.
KTPASS.exe can be found on the Microsoft Resource CD.
Let me know what follow up questions you have or if you need a link to the documentation.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...