One of the great things about Sophos NAC's installed agent is its ability to continually assess the endpoint post-admission. If a compliant machine's posture changes, the NAC agent detects this and places the endpoint into quarantine.
So, if your Anti-Virus application becomes inactive, or another critical service fails, NAC will place the endpoint in quarantine and alert the user or administrator. The end user can be given instructions to call IT Support or for fixing the problem, whilst ensuring that if the endpoint has been compromised it is unable to spread the infection to other computers.
The below clip shows a PC becoming non-compliant with a Sophos NAC Advanced policy. When the Anti-Virus application becomes inactive, the Sophos NAC agent places the PC into quarantine and restricts its network access.
http://www.youtube.com/watch?v=g3PFur0lxW8
04 February 2009
Subscribe to:
Post Comments (Atom)
Posts
No comments:
Post a Comment
All comments are moderated, so will not appear immediately.