Chapter 12. NAC Architectures
In This Chapter
Looking at the various NAC architectures
Figuring out how each architecture works
Getting the architectures to work together
NAC vendors most NAC solutions on a foundation by using an architecture or framework. Although you can find a number of architectures and frameworks for NAC, this chapter covers three core NAC architectures:
Cisco Network Admission Control (Cisco NAC)
Microsoft Network Access Protection (Microsoft NAP)
The Trusted Computing Group's (TCG) Trusted Network Connect (TNC)
These frameworks and architectures have only a few differences and many similarities. These frameworks and architectures have different points of focus; for example, one might place more emphasis and greater responsibilities on the client-side, while another focuses on the server-side.
NOTE
Most of this chapter is very technical. If you're still a little unsure about how NAC works or what it does, you might go over some earlier chapters until you have a firm enough handle on general NAC strategies and goals to be able to get through the technical details. Fasten up, we're going deep into Acronym Land.
Also, we have made forays into several of these NAC solutions, frameworks, and architectures working together, which we present after the descriptions of the main NAC architectures and frameworks. And finally, this chapter briefly discusses a few other NAC architectures and frameworks to give you a well-rounded view of the system.