Datasheet
Allied Telesis www.alliedtelesis.com
x600 SERIES | Intelligent Gigabit Layer 3+ Switches
Page 4
Key Solution - Network Access Control (NAC)
One of the major security issues facing enterprise networks is how to prevent internal breaches and malicious software infiltration. Internal
defence requires significant involvement with individual network devices, which is costly and time consuming. NAC lowers this overhead and
provides an effective solution to internal network security.
NAC automates network security policy management, allowing you to easily control network access and manage network security. NAC uses
802.1x port-based authentication in partnership with standards-compliant dynamic VLAN assignment, to assess a user’s adherence to network
security policies and either grant authentication or offer remediation. Allied Telesis NAC also supports alternatives to 802.1x port-based
authentication, such as web authentication to enable guest access, and MAC authentication for end points that do not have an 802.1x supplicant.
This ‘Tri-Authentication’, shown in Diagram 2 below, provides a way for the network to successfully manage authentication of all devices.
Allied Telesis is also a partner with Microsoft, supporting Microsoft Network Access Protection (NAP) technology. Allied Telesis is committed
to providing secure networks, and interoperability with Microsoft's network access control solution is an important component of an already
comprehensive security set. The Allied Telesis NAC solution also interoperates with many other third party NAC solutions
.
802.1x authenticated
device
MAC authenticated
device
Web authenticated
device
x600-24Ts
Tri-authentication
capable switch
Policy
and
RADIUS
Server
Policy Decision Point
Policy Enforcement Point
Access Requestor
Diagram 2: NAC with Tri-authentication