July 01, 2008
£6,595 for NAC Director; £5,295 for NAC Director GCS
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: A feature set that can do just about anything
- Weaknesses: The price may be prohibitive in the SME market, which would benefit most from this offering
- Verdict: Start here before trying other NAC products
The list of features in the NAC Director is far longer than this review allows for. For a start, the list of supported clients is extensive, including Windows from 98 to Vista. There is even a Mac client that operates on versions 10.4 and 10.5 of Mac OS. When it comes to non-standard images, Bradford uses a dissolvable client that lasts as long as the browser is open and is removed from the system when the connection is idle.
For systems that have an agent installed on top of the operating system, NAC can both push (send updates to the client) and pull (have the client request updates etc.). The most secure NAC implementation with this suite is to use 802.1x with extensible authentication protocol, which requires the use of a Radius, LDAP or Diameter server.
With the Bradford NAC device in place, the 802.1x traffic is further protected by the encryption between the NAC device and the Radius authentication server. This 802.1x network access control allows only data-link authentication packets on the outside of the connection and encrypted packets to protect the communication on the inside (LAN Side).
The NAC Director can store logs on the primary server, but they can also be sent to a syslog or SNMP manager to alert administrators of unusual events. The Bradford NAC Director has additional controls built in to protect from rogue access points or unauthorised wired access. It will alert the administrators that a port in a switch has been enabled after several months of inactivity. SNMP sweeps of the local area networks, performed by the NAC device, allow administrators to identify a new system on the network and check out whether the device is a WAP.
The installation was a breeze and the device was running well inside of a half hour. This includes the time to test a XP, Vista, and Mac machine.
The documentation comes on a CD, but the system is so easy to configure that we never had to open the manual.
Support is offered via phone, email and a website. Regular phone support costs 18 per cent of the purchase price, while premium support is 27 per cent
The pricing for the Bradford appliance is among the highest tested in the group.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Senior Network Security Engineer, London, £68-85k + package
Infosec People - England, London
Information Security Risk Manager, £45-55k + bens
Infosec People - West Midlands, England, Coventry
SOC Analyst, Aldershot, £55-63k + benefits
Infosec People - England, Aldershot, Hampshire
Security Architect, Cardiff - to £70k Basic
Infosec People - Cardiff, Wales
Sign up to our newsletters
SC Magazine UK Articles
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Met Police grab suspect with phone unlocked to get hold of data
- Cyber-security must reflect risk not just regulation
- Report: Mirai 'is just the tip of the iceberg'
- Data centres are on the move - where will they end up?
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- 9.2 million medical records for sale on darkweb
- Microsoft Office 365 hit with massive Cerber ransomware attack, report
- 400% increase in POS malware variants across US Thanksgiving weekend
- Only 25% of businesses can effectively detect and respond to data breaches
- Is BYOD your company's norm? Beware the ghosts of data past this Christmas
- Over 400,000 phishing sites have been detected each month in 2016
- TalkTalk customers urged to get routers swapped over hacker fears