Table of Contents
Advertisement
The trade-offs in the test methods are described in the following table:
Test Methods
Table 1-2
Trade-offs
Test method
Pros
Agentless
Truly agentless, no install or
download.
No extra memory load on the client
machine.
Can begin testing, view test results,
and give network access without any
end-user interaction for endpoints on
your Windows domains.
Easiest of the three test methods to
deploy.
Saves administration time and is
therefore less expensive than
agent-based solutions.
ActiveX plug-in
No installation or upgrade to
maintain.
Supports all Windows operating
systems.
Only Internet Explorer application
access required through personal
firewall. Must open port 1500.
NAC Agent
Always available for retesting.
The agent is automatically updated
with product updates.
Supports all Windows platforms.
The following list highlights key features:
Enforcement options — Novell ZENworks Network Access Control provides multiple
enforcement options for quarantining endpoints that do not comply with your security policy
(Inline, DHCP, and 802.1X). This enables Novell ZENworks Network Access Control to
enforce compliance across complex, heterogeneous networks.
High availability and load balancing — A multi-server Novell ZENworks Network Access
Control deployment is mutually supporting. Should one server fail, other nodes within a cluster
will automatically provide coverage for the affected network segment.
Cons
Requires RPC Service to be
available to the Novell ZENworks
Network Access Control server
(ports 139 or 445).
Requires file and print sharing to be
enabled.
Not supported by legacy Windows
operating systems and non-Windows
operating systems.
If the endpoint is not on a domain,
the user must specify local
credentials. A user often does not
know what credentials to enter.
No retesting of endpoint once
browser is closed.
Not supported by non-Windows
operating systems.
Browser security settings must allow
ActiveX control operation of signed
and safe controls. This is the default
for the Internet zone. Raise the
Internet zone setting and make
Novell ZENworks Network Access
Control part of the trusted zone.
Requires interaction from
end-users—they must download the
control before they can access
network.
Install and upgrade to maintain.
Requires one-time interaction from
end-users—they must download and
install before they can access
network.
TM
Introduction
21
Advertisement
Table of Contents
Related Manuals for Novell ZENWORKS NETWORK ACCESS CONTROL 5.0 - 09-22-2008
Related Products for Novell ZENWORKS NETWORK ACCESS CONTROL 5.0 - 09-22-2008
- NOVELL ZENWORKS NETWORK ACCESS CONTROL 5.0 - INSTALLATION GUIDE 09-22-2008
- Novell 3.6 05-2008
- Novell Access Manager 3.1 SP 1
- Novell Access Manager 3.1 SP 2
- NOVELL ACCESS MANAGER 3.1 SP1 - AGENT GUIDE
- NOVELL ACCESS MANAGER 3.1 SP1 - IDENTITY SERVER
- NOVELL ACCESS MANAGER 3.1 SP1 - S 11-20-2009
- NOVELL ACCESS MANAGER 3.1 SP1 - SSL VPN SERVER GUIDE 03-17-2010
- NOVELL ACCESS MANAGER 3.1 SP2 - J2EE AGENT GUIDE 2010
- NOVELL ACCESS MANAGER 3.1 SP2 - README 2010
- NOVELL ACCESS MANAGER 3.1 SP2 - SSL VPN USER GUIDE 2010
- Novell Access Manager 3.1 SP2 Beta 1
- NOVELL ACCESS MANAGER 3.1 SP2 BETA 1 - SCENARIOS 2009
- Novell Account Management 2.1
- NOVELL ADMINSTUDIO 9.5
- NOVELL APPARMOR - AND