- BlackBerry Storm vs. the iPhone
- 2008 IT industry graveyard
- Top 10 worst uses for Windows
- Economic crisis means double duty for IT pros
- BlackBerry Storm, RIM's first touchscreen device, rolls in
Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:Application Performance Solutions | App Performance | Networking Solution | SafeGuard Enterprise Solution Center | SOA | Test your Web Filter | Value of WDS
Burton Group VP and Network World columnist Dan Blum seems to agree with me that Vista belongs on your desktops. Not immediately, he thinks, but following your normal deployment schedule of new machines. Perhaps even slowing that deployment down. He especially thinks you should wait until Vista is “playing nicely” with all of your third-party security tools.
But his column did remind me that one of the new security features in Vista – Network Access Protection (NAP) – will also be one of the more talked about enhancements in Longhorn when the new server operating system ships, which should occur within the next 12 months.
NAP is a “policy enforcement platform”, according to Microsoft, built into the Windows Vista and Longhorn Windows Server code that allows you to better protect network assets by enforcing compliance with system health requirements. With NAP, you can create customized health policies to validate computer health before allowing access or communication, automatically update compliant computers to ensure ongoing compliance, and optionally confine noncompliant computers to a restricted network until they become compliant.
“Health,” by the way, appears to be a euphemism for “running the most up-to-date software,” at least as I read the marketing materials from Microsoft. But if you can get past the cuteness factor (one press release talked about non-NAP protected computers being “…at higher risk of infection from Web sites, e-mail, files from shared folders, and other publicly accessible resources”), this is an important new tool. It will allow you to specify minimum requirements in terms of software and versions installed before allowing a computer to access your network.
You can also set limits on the connection based on a specific amount of time, or the access could be limited to a restricted network, a single resource, or to no internal resources at all. If you do not configure health update resources, the limited access will last for the duration of the connection. But if you do configure health update resources, the limited access will last only until the computer is brought into compliance. You could use both monitoring and health policy compliance in your networks and configure exceptions.
Microsoft has set up a Web site with lots of details about NAP which you should check out.
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
CA Network & Voice Resource Center
Comprehensive Network & Voice Management Visit CA Network & Voice Management Resource Center and get insights into industry best practices, information that helps you to address your challenges.
CA Network & Voice Management Resource Center
Managing Voice Over IP for Successful Convergence
Voice over IP (VoIP) has much to offer in cost savings but some customers have concerns about VoIP call quality compared to the quality of traditional voice services. This white paper will help you learn how to take the right steps so that voice quality is assured.
Managing VoIP for Successful Convergence
The Changing Face of Network Management
Managing your network is serious business. This paper discusses the benefits of integrating configuration change-awareness into your network fault management solution
Download Whitepaper
Comment