Cisco Network Admission Control

What Does Cisco Network Admission Control Mean?

Cisco Network Admission Control (NAC) is a set of technologies and solutions that uses the infrastructure of a computer network for network access control (NAC) and network protection. Network access is allowed only by trusted endpoint devices, such as workstations, servers, personal digital assistants (PDA) and other devices. It restricts all noncompliant devices. All access methods are monitored, including wireless devices, local area networks (LAN) and remote access wide area networks (WAN).


Techopedia Explains Cisco Network Admission Control

In 2006, Cisco and Microsoft announced an interoperability agreement that enabled collaboration between Cisco NAC and Microsoft Network Access Protection (Microsoft NAP), followed by co-marketing during the next year. Customers were allowed to use one or both technologies.

NAC also blocks, isolates and repairs noncompliant machines while suspect machines are quarantined in a designated area. Queued network guests are granted a quarantine area to work out authentication or other issues. Often, some type of credential is required prior to granting network access.

Additionally, a machine’s anti-virus status may be verified, which includes current versions of anti-virus software, virus definitions and scan engines.

The Cisco Trust Agent is a key NAC component that resides on an endpoint system. As it collects security state information, the Cisco Trust Agent communicates with Cisco routers. This information is communicated to the Cisco Secure Access Control Server (Cisco ACS) for access determination. The decision is then communicated to the router, which enforces the decision by allowing or disallowing access.


Related Terms

Latest Network Management Terms

Related Reading

Margaret Rouse

Margaret Rouse is an award-winning technical writer and teacher known for her ability to explain complex technical subjects to a non-technical, business audience. Over the past twenty years her explanations have appeared on TechTarget websites and she's been cited as an authority in articles by the New York Times, Time Magazine, USA Today, ZDNet, PC Magazine and Discovery Magazine.Margaret's idea of a fun day is helping IT and business professionals learn to speak each other’s highly specialized languages. If you have a suggestion for a new definition or how to improve a technical explanation, please email Margaret or contact her…