10CHAPTER 1: INTRODUCTION

Moving specific users or computers (e.g. a PC infected with a virus) into an isolated network.

Figure 1 illustrates the integration of 3Com Network Access Manager with Microsoft's Internet Authentication Service (IAS) and Microsoft's Active Directory.

Figure 1 3Com Network Access Manager Integrated with IAS and Active

Directory

Network Administrator

Network

Operator

Access Manager User Interface

3Com Network

Users and Computers

Active Directory

Microsoft

Internet

Authentication

Service

RADIUS Server

Microsoft Active Directory

RADIUS requests

RADIUS responses

RADIUS clients

3Com Network Access Manager is not a standalone RADIUS server.

3Com Network Access Manager is a rule based application that extends the RADIUS response from the IAS RADIUS server to include the VLAN and QoS profile associated with the rule, if the rule is obeyed. Network administrators create rules through the 3Com Network Access Manager Network Administration interface, and apply them to the users, groups and computers configured within the domain. Network operators, if assigned permission by the network administrator, can apply rules to users, groups and computers, see “Selecting Appropriate Permissions For An Operator” in Chapter 3.

3Com Network Access Manager can be used to extend the security on a network by setting up a self-protecting network. Creating a “Restricted Access” user group and corresponding “Isolation” VLAN and QoS settings will enable the network administrator to keep separate otherwise

Page 9 Page 11
Page 10
Image 10
3Com DUA1550-0AAA02 manual Introduction
Page 9 Page 11
Top Page Image Contents