Nortel Secure Network Access - Nortel 8300 Important Notice
Ethernet routing switch administration and security
Hide thumbs
Also See for 8300:
- Reference manual (220 pages) ,
- Troubleshooting manual (186 pages) ,
- User manual (134 pages)
Table of Contents
Advertisement
10 Administration and Security
fails because there are no valid servers, you use the user name and
password for RADIUS authentication. If RADIUS also fails, you use the
user name and password for the local database. (That is, you always
attempt authentication in the following order: TACACS+, RADIUS, the
local database.)
If TACACS+ returns an access denied packet, the end user is offered a
new authentication attempt (login/password prompts are re-issued — the
authentication process is not passed to RADIUS).
For more information about TACACS+ and how to configure the application,
refer to Nortel Ethernet Routing Switch 8300 Configuration — Security using
CLI and NNCLI (NN46200-503) and Nortel Ethernet Routing Switch 8300
Configuration — Security using Device Manager (NN46200-508).
Nortel Secure Network Access
The Nortel ERS 8300 can be configured as a network access device using
Nortel Secure Network Access (NSNA).
NSNA, is a protective framework that addresses endpoint security and
enforces policy compliance. The framework completely secures the network
from endpoint vulnerability and delivers endpoint security by enabling only
trusted, role-based access privileges premised on the security level of
the device, end user identity, and session context. NSNA enforces policy
compliance, such as Sarbanes-Oxley and COBIT, ensuring that the required
anti-virus applications or software patches are installed before users are
granted network access.
NSNA provides a policy-based, clientless approach to corporate network
access with both authentication and enforcement, such as:
•
•
•
NSNA supports controlled network access for end users on a Nortel
ERS 8300 port. A PC or desktop end user gradually gains access to the
corporate network by completing the following:
•
•
Before authentication, the end user has restricted access to only the NSNA
Server (NSNAS), to provide a path for authentication traffic.
Copyright © 2005-2007, Nortel Networks
.
operating system, antivirus, and firewall code revision enforcement
®
Windows
registry content verification and enforcement
file system verification and enforcement
authentication
host integrity check and remediation (if needed)
Nortel Ethernet Routing Switch 8300
Important Notice — Administration and Security
NN46200-601 3.01 Standard
4.0 27 August 2007
Advertisement
Table of Contents
