Network Access Control (NAC) for IPsec and L2TP/IPsec Users

In version 4.7, Cisco introduced the Network Access Control (NAC) feature for IPsec and L2TP/IPsec clients. Like the Cisco Secure Desktop (CSD) feature for WebVPN (discussed in the next chapter), NAC for IPsec and L2TP/IPsec provides a method of validating a user’s access based on their operating system version and applied service packs, the anti-virus software and applied updates, the personal firewall software and applied updates, and the intrusion protection software and applied updates.

With CSD for WebVPN, the concentrator validates a user’s access. With NAC, the concentrator serves as a proxy: the Cisco Trust Agent (CTA) software is installed on a user’s PC and sends the required ...

Get The Complete Cisco VPN Configuration Guide now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.