Novell ZENworks Network Access Control 5.0 Manuals

Manuals and User Guides for Novell ZENworks Network Access Control 5.0. We have 2 Novell ZENworks Network Access Control 5.0 manuals available for free PDF download: User Manual, Installation Manual

NOVELL ZENworks Network Access Control 5.0 User Manual (534 pages)

Brand: NOVELL | Category: Software | Size: 10 MB

Table of Contents
5
1 Introduction

15
- Novell Zenworks Network Access Control Home Window
  15
- System Monitor
  16
- Novell Zenworks Network Access Control V5.0 for V4.X Users
  17
- Overview
  20
  - The Novell Zenworks Network Access Control Process
    22
  - About Novell Zenworks Network Access Control
    22
- Technical Support
  25
- Additional Documentation
  25
- Installing and Upgrading
  25
- Conventions Used in this Document
  26
  - Navigation Paragraph
    26
  - Tip Paragraph
    26
  - Note Paragraph
    26
  - Important Paragraph
    26
  - Warning Paragraph
    26
  - Italic Text
    27
  - Courier Font
    27
  - Angled Brackets
    27
  - Square Brackets
    28
  - Terms
    28
- Copying Files
  28
- Scp
  28
  - Pscp
    28
- Users' Guide Online Help
  29
2 Clusters and Servers

33
- Single-Server Installation
  34
- Multiple-Server Installations
  34
3 System Configuration

37
- Introduction
  38
- Enforcement Clusters and Servers
  39
- Enforcement Clusters
  39
- Enforcement Servers
  43
  - Adding an es
    44
  - Cluster and Server Icons
    45
  - Editing Ess
    45
  - Changing the es Network Settings
    46
  - Changing the es Date and Time
    47
  - Modifying the es SNMP Settings
    47
  - Modifying the es Root Account Password
    48
  - Viewing es Status
    48
  - Deleting Ess
    49
  - ES Recovery
    49
- Management Server
  50
- User Accounts
  57
  - Adding a User Account
    58
  - Searching for a User Account
    60
  - Sorting the User Account Area
    60
  - Copying a User Account
    61
  - Editing a User Account
    62
  - Deleting a User Account
    62
- User Roles
  63
  - Adding a User Role
    64
  - Editing User Roles
    66
  - Deleting User Roles
    66
  - Sorting the User Roles Area
    67
- License
  67
  - Updating Your License Key
    68
- Test Updates
  68
- Quarantining, General
  70
  - Selecting the Quarantine Method
    71
  - Selecting the Access Mode
    72
- Quarantining, 802.1X
  72
  - Entering Basic 802.1X Settings
    73
  - Authentication Settings
    74
  - Adding 802.1X Devices
    79
  - Testing the Connection to a Device
    80
  - Cisco IOS
    82
  - Cisco Catos
    84
  - Enterasys
    86
  - Extreme Extremeware
    88
  - Extreme XOS
    90
  - Foundry
    92
  - HP Procurve Switch
    94
  - HP Procurve WESM Xl or HP Procurve WESM Zl
    97
  - HP Procurve 420 AP or HP Procurve 530 AP
    99
  - Nortel
    101
  - Other
    103
- Quarantining, DHCP
  104
  - DHCP Server Configuration
    104
  - Setting DHCP Enforcement
    104
  - Adding a DHCP Quarantine Area
    106
  - Sorting the DHCP Quarantine Area
    107
  - Editing a DHCP Quarantine Area
    108
  - Deleting a DHCP Quarantine Area
    108
- Quarantining, Inline
  108
- Post-Connect
  109
- Maintenance
  114
  - Initiating a New Backup
    115
  - Restoring from a Backup
    116
- Downloading Support Packages
  116
- Cluster Setting Defaults
  116
  - Testing Methods
    117
  - Selecting End-User Options
    119
  - Accessible Services
    119
  - Exceptions
    121
  - Notifications
    123
  - End-User Screens
    125
  - Agentless Credentials
    127
- Logging
  131
  - Setting es Logging Levels
    132
  - Setting 802.1X Devices Logging Levels
    133
- Advanced Settings
  133
  - Setting the Agent Read Timeout
    134
  - Setting the RPC Command Timeout
    135
4 Endpoint Activity

137
- Filtering the Endpoint Activity Window
  138
  - Filtering by Access Control or Test Status
    138
  - Filtering by Time
    139
  - Limiting Number of Endpoints Displayed
    140
  - Searching
    141
- Access Control States
  141
- Endpoint Test Status
  142
- Enforcement Cluster Access Mode
  146
- Viewing Endpoint Access Status
  147
- Selecting Endpoints to Act on
  147
- Acting on Selected Endpoints
  148
- Viewing Endpoint Information
  149
- Troubleshooting Quarantined Endpoints
  151
5 End-User Access

157
- Test Methods Used
  157
  - Agent Callback
    157
- Endpoints Supported
  158
- Browser Version
  159
- Firewall Settings
  159
  - Managed Endpoints
    160
  - Unmanaged Endpoints
    160
  - Making Changes to the Firewall
    160
- Windows Endpoint Settings
  160
  - IE Internet Security Setting
    160
  - Agent-Based Test Method
    161
  - Agentless Test Method
    161
  - Activex Test Method
    170
- Mac os X Endpoint Settings
  170
  - Ports Used for Testing
    170
  - Allowing Novell Zenworks Network Access Control through the os X Firewall
    171
- End-User Access Windows
  174
  - Opening Window
    175
  - Windows NAC Agent Test Windows
    176
  - Mac os Agent Test Windows
    181
  - Activex Test Windows
    188
  - Agentless Test Windows
    188
  - Testing Window
    191
  - Test Successful Window
    191
  - Testing Cancelled Window
    192
  - Testing Failed Window
    192
  - Error Windows
    194
- Customizing Error Messages
  194
6 NAC Policies

201
- Standard NAC Policies
  202
- NAC Policy Group Tasks
  202
  - Add a NAC Policy Group
    203
  - Editing a NAC Policy Group
    204
  - Deleting a NAC Policy Group
    204
- NAC Policy Tasks
  205
  - Enabling or Disabling a NAC Policy
    205
  - Selecting the Default NAC Policy
    205
  - Creating a New NAC Policy
    206
  - Editing a NAC Policy
    209
  - Copying a NAC Policy
    209
  - Deleting a NAC Policy
    209
  - Moving a NAC Policy between NAC Policy Groups
    209
  - Assigning Endpoints and Domains to a Policy
    210
  - NAC Policy Hierarchy
    210
  - Setting Retest Time
    210
  - Setting Connection Time
    210
  - Defining Non-Supported os Access Settings
    211
  - Setting Test Properties
    211
  - Selecting Action Taken
    211
- About Novell Zenworks Network Access Control Tests
  212
  - Viewing Information about Tests
    213
  - Selecting Test Properties
    213
  - Test Icons
    215
7 Quarantined Networks

217
- Endpoint Quarantine Precedence
  217
- Using Ports in Accessible Services and Endpoints
  218
- Always Granting Access to an Endpoint
  220
- Always Quarantining an Endpoint
  221
- New Users
  221
- Shared Resources
  221
- Untestable Endpoints and DHCP Mode
  222
- Windows Domain Authentication and Quarantined Endpoints
  222
8 High Availability and Load Balancing

225
- High Availability
  225
- Load Balancing
  228
9 Inline Quarantine Method

229
10 DHCP Quarantine Method

231
- Configuring Novell Zenworks Network Access Control for DHCP
  232
11 1X Quarantine Method

235
12 Api

283
13 Remote Device Activity Capture

295
- Creating a DAC Host
  295
  - Downloading the EXE File
    296
  - Running the Windows Installer
    296
  - Adding Additional Interfaces
    302
  - Configuring the MS and es for DAC
    303
  - Adding Additional Ess
    304
  - Starting the Windows Service
    305
  - Viewing Version Information
    305
  - Removing the Software
    306
- Novell Zenworks Network Access Control to Infoblox Connector
  307
  - Configuring the Infoblox Server
    307
  - Configuring Novell Zenworks Network Access Control
    308
14 Reports

311
- Generating Reports
  313
- Viewing Report Details
  314
- Printing Reports
  315
- Saving Reports to a File
  315
- Converting an HTML Report to a Word Document
  316
15 DHCP Plug-In

317
- Installation Overview
  318
- DHCP Plug-In and the Novell Zenworks Network Access Control User Interface
  320
16 System Administration

329
- Launching Novell Zenworks Network Access Control
  329
- Restarting Novell Zenworks Network Access Control System Processes
  330
- Managing Your Novell Zenworks Network Access Control License
  331
  - Entering a New License Key
    331
- Downloading New Tests
  332
- System Settings
  332
  - Dns/Windows Domain Authentication and Quarantined Endpoints
    333
  - Matching Windows Domain Policies to NAC Policies
    334
  - Setting the Access Mode
    334
  - Naming Your Enforcement Cluster
    335
  - Changing the MS Host Name
    335
  - Changing the es Host Name
    335
  - Changing the MS or es IP Address
    335
  - Resetting Your System
    335
  - Resetting Your Test Data
    336
  - Changing Properties
    337
  - Specifying an Email Server for Sending Notifications
    338
- Entering Networks Using CIDR Format
  338
- Database
  339
  - Creating a Backup File
    339
  - Restoring from Backup
    339
  - Restoring the Original Database
    341
  - Generating a Support Package
    341
- System Requirements
  341
- Supported Vpns
  343
- Adding Custom Tests
  343
  - Introduction
    343
  - References
    343
  - Changing the Error Messages in a Test Script
    344
  - Creating a Custom Test Class Script from Scratch
    347
  - Basictests API
    356
- End-User Access Windows
  361
- How Novell Zenworks Network Access Control Handles Static IP Addresses
  362
- Managing Passwords
  363
- NTLM 2 Authentication
  366
- Working with Ranges
  367
- Creating and Replacing SSL Certificates
  368
  - Creating a New Self-Signed Certificate
    368
  - Using an SSL Certificate from a Known Certificate Authority (CA)
    369
- Moving an es from One MS to Another
  370
- Recovering Quickly from a Network Failure
  371
- VLAN Tagging
  371
- Iptables Wrapper Script
  373
- Supporting Network Management System
  373
  - Enabling ICMP Echo Requests
    374
  - Changing the Community Name for SNMPD
    375
  - SNMP Mibs
    376
17 Patch Management

379
- Flagging a Test to Launch a Patch Manager
  380
- Selecting the Patch Manager
  380
- Specifying the Number of Retests
  381
- Specifying the Retest Frequency
  381
- SMS Patch Management
  381
- SMS Concepts
  381
- Novell Zenworks Network Access Control/Sms/Novell Zenworks Network Access Control
  382
  - Process
    382
- Novell Zenworks Network Access Control Setup
  382
- Learning more about SMS
  382
A Configuring the Post-Connect Server

385
- Overview
  385
- Extracting the ZIP File
  385
  - A.1 Overview
    385
  - A.2 Extracting the ZIP File
    385
  - Linux
    386
  - Windows
    386
- ZIP File Contents
  386
  - A.2.1 Windows
    386
  - A.2.2 Linux
    386
  - A.3 ZIP File Contents
    386
- Setting up a Post-Connect Host
  387
  - Windows
    387
  - A.4.1 Windows
    387
  - Linux
    388
  - A.4.2 Linux
    388
- Viewing Logs
  390
- A.5 Viewing Logs
  390
- Testing the Service
  390
  - Windows
    390
  - Linux
    390
    
    A.6.1 Windows
    390
    
    A.6.2 Linux
    390
- Configuring Your Sensor
  391
- Allowing Novell Zenworks Network Access Control through the Firewall
  391
B Tests Help

393
- Browser Security Policy - Windows
  393
- Operating System - Windows
  400
  - B.2 Operating System — Windows
    400
  - B.2.1 IIS Hotfixes
    401
  - IIS Hotfixes
    401
  - Internet Explorer Hotfixes
    401
  - Microsoft Office Hotfixes
    402
  - Microsoft Applications Hotfixes
    403
  - Microsoft Servers Hotfixes
    404
  - Microsoft Tools Hotfixes
    404
  - B.2.7 Service Packs
    405
  - Service Packs
    405
  - Windows 2000 SP4 Hotfixes
    405
  - Windows 2003 SP1 Hotfixes
    406
  - Windows 2003 SP2 Hotfixes
    407
  - Windows Automatic Updates
    408
  - Windows Media Player Hotfixes
    409
  - Windows Vista TM SP0 Hotfixes
    409
  - Windows XP SP1 Hotfixes
    410
  - Windows XP SP2 Hotfixes
    411
- Security Settings - os X
  411
  - B.3 Security Settings — os X
    411
  - Mac Airport Preference
    412
  - Mac Airport WEP Enabled
    412
  - Mac Airport User Prompt
    413
  - B.3.5 Mac Bluetooth
    414
  - Mac Anti-Virus
    414
  - Mac Bluetooth
    414
  - B.3.6 Mac Firewall
    415
  - Mac Firewall
    415
  - Mac Internet Sharing
    416
  - Mac Quicktime ® Updates
    416
  - Mac Security Updates
    417
  - Mac Services
    418
- Security Settings - Windows
  418
  - Allowed Networks
    418
    
    B.3.10 Mac Services
    418
    
    B.4.1 Allowed Networks
    418
    
    B.4 Security Settings — Windows
    418
  - Microsoft Excel Macros
    419
  - Microsoft Outlook Macros
    420
  - Microsoft Word Macros
    421
  - Services Not Allowed
    422
  - Services Required
    423
  - B.4.6 Services Required
    423
  - Windows Bridge Network Connection
    424
  - Windows Wireless Network SSID Connections
    425
  - Windows Security Policy
    426
  - Windows Startup Registry Entries Allowed
    427
  - Wireless Network Connections
    428
- Software - Windows
  429
  - Anti-Spyware
    429
    
    B.5.1 Anti-Spyware
    429
    
    B.5 Software — Windows
    429
  - Anti-Virus
    430
  - B.5.2 Anti-Virus
    430
  - High-Risk Software
    431
  - Microsoft Office Version Check
    431
  - P2P
    432
  - B.5.5 P2P
    432
  - Personal Firewalls
    433
  - B.5.6 Personal Firewalls
    433
  - Software Not Allowed
    433
  - Software Required
    434
  - B.5.8 Software Required
    434
  - Worms, Viruses, and Trojans
    435
C HA Bypass Card

437
- Overview
  437
- C.1 Overview
  437
- Location and Connections
  438
- HA Bypass Supported
  438
- C.3 HA Bypass Supported
  438
- Installing the Bypass Card
  438
- Configuring the Bypass Card
  439
- Operating the Bypass Card
  441
D Database Design (Data Dictionary)

443
- Test_Result Table
  443
- Device Table
  444
- D.2 Device Table
  444
- Sa_Cluster
  447
- Sa_Node
  447
- Sa_User
  447
  - D.3 Sa_Cluster
    447
  - D.4 Sa_Node
    447
  - D.5 Sa_User
    447
- Cluster_To_User
  448
- User_Group
  448
- User_To_Groups
  448
- Group_To_Permission
  448
  - D.7 User_Group
    448
  - D.8 User_To_Groups
    448
  - D.9 Group_To_Permission
    448
E Ports Used in Novell Zenworks Network Access Control

451
F MS Disaster Recovery

457
- Installation Requirements
  457
- F.1 Installation Requirements
  457
- Installing the Standby MS
  457
- Ongoing Maintenance
  458
- Failover Process
  458
  - F.3 Ongoing Maintenance
    458
  - F.4 Failover Process
    458
G Licenses

461
- Novell End-User License Agreement
  461
- G.1 Novell End-User License Agreement
  461
- Other Licenses
  468
  - Apache License Version 2.0, January 2004
    468
  - G.2 Other Licenses
    468
  - Asm 2.2.3
    471
  - G.2.2 Asm 2.2.3
    471
  - Open SSH 4.5P1
    472
    
    G.2.4 Postgresql 8.1.8
    476
    
    G.2.5 Postgresql Jdbc 8.1-408
    476
  - Postgresql 8.1.8
    476
  - Postgresql Jdbc 8.1-408
    476
    
    G.2.6 Xstream 1.2.1
    477
    
    G.2.7 Libeay (Open SSL)
    477
  - Libeay (Open SSL)
    477
  - Xstream 1.2.1
    477
  - Junit 4.4 Common Public License - V 1.0
    479
  - G.2.9 Open SSL 1.1.2
    482
  - Open SSL 1.1.2
    482
  - The Following License Applies to SAPQ 2.0, Samba-Tng 0.4 and Bridgeutil 1.1
    485
  - Pullparser 2.1.10
    490
  - Xpp3 1.1.3.4D
    491
  - Jcifs 1.2.15, MM.mysql 2.0.14, P0F 2.06, Jarapac,Ncacn_Np, Ntlm-Security Jpcap
    492
  - Ojdbc 14.10G
    499
  - Javamail 1.3.1 Sun Microsystems, Inc
    503
  - Jcharts
    506
  - Pyxml 0.8.4 Python License (CNRI Python License)
    507
  - IO-Stty .02 and IO-Tty1.02
    508
  - Concurrent 1.3.4
    509
  - Crypto ++ 5.2.1
    510
  - Winpcap 4.0.1A
    512
  - Activation 1.0.2 Package
    516
  - Java Optional Package
    518
  - Jsp-Api Package
    519

NOVELL ZENworks Network Access Control 5.0 Installation Manual (64 pages)

Brand: NOVELL | Category: Software | Size: 1 MB

Novell Categories

Software Server

Desktop

Printer Recording Equipment

More Novell Manuals

Novell ZENworks Network Access Control 5.0 Manuals

NOVELL ZENworks Network Access Control 5.0 User Manual (534 pages)

Table of Contents

1 Introduction

2 Clusters and Servers

3 System Configuration

4 Endpoint Activity

5 End-User Access

6 NAC Policies

7 Quarantined Networks

8 High Availability and Load Balancing

9 Inline Quarantine Method

10 DHCP Quarantine Method

11 1X Quarantine Method

12 Api

13 Remote Device Activity Capture

14 Reports

15 DHCP Plug-In

16 System Administration

17 Patch Management

A Configuring the Post-Connect Server

B Tests Help

C HA Bypass Card

D Database Design (Data Dictionary)

E Ports Used in Novell Zenworks Network Access Control

F MS Disaster Recovery

G Licenses

NOVELL ZENworks Network Access Control 5.0 Installation Manual (64 pages)

Table of Contents

Table of Contents

What You Need to Get Started

1 Deployment Flexibility

2 System Requirements

3 Installing Novell Zenworks Network Access Control

4 Configuring Novell Zenworks Network Access Control

Installation and Configuration

Related Products

Novell Categories