08-30-2007 05:36 AM - edited 02-21-2020 01:39 AM
I'm tryin to determine if Cisco's NAC appliance would be able to stop someone from plugging in a Wireless AP and get it working as an access point or bridge. Is there a configuration or option within the NAC to do this?
09-05-2007 06:50 AM
This document describes how to integrate the Cisco Clean Access (CCA) solution with a Cisco Wireless LAN Controller (referred to hereafter as the controller) to provide guest user access management and posture assessment features for wireless networks. A similar configuration is designed for non-guest user access and posture assessment.
http://www.cisco.com/en/US/docs/wireless/technology/clean_access/technical/reference/cleanAN.html
09-09-2007 05:05 PM
I can't think of a way to prevent rogue APs with NAC. It's designed to verify host configuration, not infrastructure devices.
There are however, many other ways to detect rogue APs, from simple to complex, and cheap to hideously expensive.
Ron
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide