Policy-enabled edge, Policy-enabled edge -2 – Enterasys Networks 9034385 User Manual
Page 40
Scenario 1: Intelligent Wired Access Edge
3-2 Use Scenarios
within the same Quarantine VLAN because the authorization point is usually implemented at the
exit point of the VLAN via Access Control Lists (ACLs).
Policy-Enabled Edge
The following figure illustrates how the NAC Gateway and the other Enterasys NAC components
work together in a network with policy‐enabled edge switches to provide a comprehensive NAC
solution.
Figure 3-1 Intelligent Wired Access Edge with Enterasys Policy-Enabled Devices
1
4
5
5
3
2
3
3
Remediation
Web Page
Enterasys
NAC Manager
Enterasys
Matrix/SecureStack
Switch
NAC Gateway
(out-of-band appliance)
Assessment
Server
Authentication
Server
(optionally integrated
in NAC Gateway)
Policy Role = Quarantine
1
2
3
4
5
NAC Functions
Detect
Authenticate
Assess
Authorize
Remediate