0 Replies Latest reply on Mar 7, 2010 9:17 PM by Tiger

    McAfee & Cisco Joint Network Access Control Solution questions

      Hi


      I have read our whiterpaper of McAfee & Cisco Joint Network Access Control Solution.
      http://www.mcafee.com/au/medium/products/network_access_control/mcafee_cisco.htm l


      But I am puzzels with the McAfee products used in this solution.

      Should you please help me to answer with these questions in this solution?

      Thanks you very much.

       

      Endpoint area:
      1.McAfee Policy Enforcer in NAC means McAfee Network Access Control client or other McAfee software?

         McAfee Policy Enforcer scanner is same as McAfee Anti-virus scanner or other McAfee software?

         Please tell me the McAfee Policy Enforcer products name.

       

      2. Does McAfee Network Access Control client support 802.1x authentication and NAC phase 2?

         Because we have two solutions of endpoints access: a: McAfee Network Access Control client +Cisco Trust Agent

                                                                                      b:  without install Cisco Trust Agent

       

      3.Shall we can only use McAfee Network Access Control client process 802.1x authentication with Cisco L2 switch and ACS?

         Or McAfee Network Access Control client + Windows 802.1x

       

      4.How about the price and license of the McAfee Network Access Control client?

       

      5.Shall we can use Cisco secure agent + McAfee AV software (exist) + McAfee Network Access Control server to implement NAC?

       

      6.Shall we can use Cisco trust agent + McAfee AV software (exist) + McAfee Network Access Control server to implement NAC?

       

      Policies server and ACS area:

      1."McAfee Policy Enforcer leverages McAfee ePO for centralized management and consolidated reporting” ,

          McAfee Policy Enforcer means McAfee Network Access Control sever or other McAfee software?

       

      2. If there are ePO in use, we need to add which software to implement NAC or do not need add software module only based ePO is enough.

       

      3. We want users be comlied distribute to different VLAN as requirements, VLAN distribute decisions be made by McAfee Network Access Control sever or Cisco ACS ? I think it will be made by Cisco ACS.  So Cisco ACS can make VLAN distribute decisions independently and it process appropriate access action (allow access, deny access, restrict access, or quarantine) by McAfee Network Access Control sever command after McAfee Policy Enforcer scanner scan.

       

      Please answer me soon.

      Thanks for your help.