Chapter 5NAC Layer 2 Operations
This chapter covers the following topics:
- IEEE 802.1X technology overview
- 802.1X framework
- IEEE 802.1X operational overview
- RADIUS
- Authorization and enforcement
- Integration issues when using 802.1X
- NAC-L2-802.1X identity with posture validation and enforcement
- Leveraging an authenticated identity
The first Network Admission Control (NAC) Framework deployment rule of thumb is to use the NAC-enabled network access device (NAD) closest to the endpoints to check compliance; this helps enforce a least-privilege principle. In many cases, NAC is implemented at the switch port working at Layer 2.
This chapter describes how NAC works when implemented using NAC-L2-802.1X. The chapter begins by describing the 802.1X technology ...
Get Cisco Network Admission Control, Volume I: NAC Framework Architecture and Design now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
