Subscribe Contact Us About Us Advertising Editorial Calendar SC US SC Aus/NZ

Home
News
Events
Blog
SC Awards
- Previous Awards
Products
- Reviews
- Group Tests
SC Insight
Jobs
Archive
Subs
- News by Email
- Subscribe to SC Magazine
Whitepapers

Text "follow scmagazineuk" to 86444
@scmagazineuk
LinkedIn

RSS | Log in | Register

Symantec NAC 11.0

Justin Peltier

7/1/2008

Print
Email
Reprint
Text: A | A | A

Product Information

Vendor:Symantec Corporation

Product: Symantec NAC 11.0

http://www.symantec.com

Price:£6,518, including Symantec Network Access Control Starter Edition 11.0, 1 Symantec NAC Enforcer Appliance, and 1 year of Essential Support Services

Product Rating

Features
Ease of Use
Performance
Documentation
Support
Value for Money
Overall Rating

For:802.1x compliant, so no extra authentication servers needed

Against:Difficult install relies on Symantec's professional services

Verdict:An acceptable offering that is complex to implement and manage, but it delivers the features advertised

Related Group Test

NAC (2008)

Reviews For This Vendor

The offering from Symantec is much larger than the scope of this review. NAC 11.0 has additional functionality such as desktop enforcement through client-installed firewall/agents.

A LAN enforcer, configured to work with a Radius, Diameter or LDAP server, forwards the user information it receives from the 802.1x supplicant to the Radius server for authentication and does not grant access to a client that fails the user-level authentication.

There are three types of enforcer appliances: gateway, DHCP and LAN enforcers. The Symantec Enforcer is a component that works together with the Symantec Policy Manager and Symantec Agents to protect the enterprise network. Enforcers are responsible for many tasks. It is generally more convenient to administer them all in one centralised location. The Policy Manager provides this capability.

Symantec Agents can be configured to run host integrity checks at various times. This ensures that the user has not disabled the local firewall or anti-virus, or performed any other action that would cause the device to be moved into a quarantine area, which will only allow users to access the internet for the purpose of bringing back the client, through HI, to the regular LAN segment.

When a client tries to connect to the network, the Symantec Agent runs a host integrity check. It then sends the results to the enforcer. If the client passes, it gains access to the network.

The installation is so complex that Symantec usually sends a professional service technician to complete the initial install.

Limited documentation for the product is available online. We were unable to locate any additional documentation, which would have been handy to have.

The first year of support, which is included, is available 24/7. Additional phone, email and website access are available after the first year.

The pricing for the NAC 11.0 appliance starts at £6,518, which includes Symantec Network Access Control Starter Edition 11.0, a Symantec NAC Enforcer Appliance and a year of essential support. This makes the NAC 11.0 average value for money.

SC Featured Webcast

Employee file sharing: the good, the bad and the ugly

Streaming live on 4th June 2013 at 3pm GMT

This new webcast is set to unveil the full results from the latest data security survey, where it was revealed that 50 per cent of the information security professionals asked said that they had 'no real visibility' of how data is being sent within and outside the company. Guest speakers include the director of information security from Monster.co.uk and the ISO from Atos. To secure your free place, please click here.

SC Webcasts

Security beyond the (fire)wall

Streaming live on 6^th June at 3pm BST

This webcast addresses the technological challenges of maintaining full control of your most sensitive information - even once it goes beyond the firewall - while maintaining the freedom and flexibility necessary to allow your staff and other stakeholders to work as efficiently as possible. Tune in for free to hear from our regular and popular guest speaker, Bola Rotibi from (ISC)2 application security advisory board. To secure your place, please click here.

2013's invisible network threats: Identify and respond

Streaming live on 11^th June at 3pm BST

In a recent SC survey, when asked 'Do you think your current network is secure?' 43 per cent of IS professionals said they were not sure. Technology developments such as multi-point cloud solutions, consumerisation, BYOD uptake and even Windows 8 are a major headache in network security for IT leaders. So what can be done? SC's latest webcast shares practical advice from industry experts. To secure your free place, please click here.

SC Whitepapers

Java security: Balancing existing testing platforms with open source solutions

In a rush to get new products out to market quickly, companies expose themselves to the risk of software failure. Java developers often turn to open source solutions to help protect themselves from risk. This new whitepaper explains how you can use your existing testing platforms alongside open source solutions to fix those issues related to both security and quality within your Java code. To download the paper for free, please click here.

DDoS and downtime: Considerations for risk management

The purpose of this paper is to start a conversation about the often overlooked risk of downtime caused by DDoS attacks and to provide sufficient content for risk managers to account for the DDoS threat as they evaluate risks to their day-to-day operations and long-term mission. To read the paper in full, please download it for free here.

Ponemon 2012 Global Encryption Trends Study

In Ponemon's recent Global Encryption Study, the organisation surveyed 4,205 information security professionals across seven countries to examine how encryption has evolved over the last eight years. The study focused on data protection priorities, budgeted expenditures for encryption and the types of encryption technologies involved, with the findings revealing some interesting insight into the relationship between encryption and its impact on the security position of organisations. To read the full report for free, please download it here.

Advanced spear phishing: The rise of industrial phishing attacks

With phishing still the most common form of attack, hackers are now engaging in industrial-scale phishing attacks that leverage sophisticated customisation and delivery techniques. Borrowing tactics from cloud computing and database marketing, this study looks at longline phishing - an advanced form of spear phishing, which has higher clickthrough and penetration rates than traditional attacks, potentially causing a higher risk to IT security departments across the world. To read the study for free, please click here.

Most Popular
Most Emailed
Most Recent

RSS

This material may not be published, broadcast, rewritten or redistributed in any form without prior authorization.

Your use of this website constitutes acceptance of Haymarket Media's Privacy Policy and Terms & Conditions