Specifications

2 SINGLE, CENTRAL AUTOMATED CONSOLE REVIEWER’S GUIDE

You can conﬁgure different location aware security policies to ensure that mobile

computers are protected, whether in or out of the ofﬁce. The location of the

mobile computer is detected using either DNS or the gateway MAC address.

Network access control policies

NAC policies are controlled through the NAC Manager which is launched from the

NAC menu button at the top of the console, or by double clicking on a NAC policy.

Endpoint Security and Data Protection comes pre-conﬁgured with policies for

managed and unmanaged computers. The NAC Manager provides additional

policy editing, reporting, access control, and system conﬁguration capabilities

and is divided into four main functional navigation areas: Manage, Enforce,

Report, and Conﬁgure system.

Figure 13: Location aware ﬁrewall

Important

Assessment and control of

unmanaged/unauthorized

computers requires the

installation of the Sophos DHCP

server component on a Microsoft

DHCP server. It is recommended

the network administrator

responsible for Microsoft DHCP is

involved in this process.

Figure 14: NAC management user interface provides an at-a-glance view of

compliance across the network