Network Access Control (NAC) for IPsec and L2TP/IPsec Users

In version 4.7, Cisco introduced the Network Access Control (NAC) feature for IPsec and L2TP/IPsec clients. Like the Cisco Secure Desktop (CSD) feature for WebVPN (discussed in the next chapter), NAC for IPsec and L2TP/IPsec provides a method of validating a user’s access based on their operating system version and applied service packs, the anti-virus software and applied updates, the personal firewall software and applied updates, and the intrusion protection software and applied updates.

With CSD for WebVPN, the concentrator validates a user’s access. With NAC, the concentrator serves as a proxy: the Cisco Trust Agent (CTA) software is installed on a user’s PC and sends the required ...

Get The Complete Cisco VPN Configuration Guide now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.