28 Overview
Nortel SNAS functions
The Nortel SNAS performs the following functions:
Acts as a web server portal, which is accessed by users in clientless
mode for authentication and host integrity check and which sends
remediation instructions and guidelines to endpoint clients if they fail
the host integrity check.
Communicates with backend authentication servers to identify
authorized users and levels of access.
Acts as a policy server, which communicates with the Nortel Health
Agent applet that verifies host integrity.
Instructs the network access devices to move clients to the appropriate
enforcement zones.
Can be a DNS proxy in the Red VLAN when the Nortel SNAS functions
as a captive portal
Supports the RADIUS server
Supports Microsoft NAP Interoperability.
Performs session management.
Monitors the health of clients and switches.
Performs logging and auditing functions.
Provides High Availability (HA) through IPmig protocol.
Nortel SNAS enforcement types
Nortel SNAS provides several enforcement types for restricting access
to the network.
VLANs and filters uses a combination of VLANs and filters to provide
enforcement. It is available with NSNA network access devices; that is,
devices that support SSCP (Switch-SNAS Communication Protocol),
SSCP-Lite, and 802.1x switches.
Filters only uses only filters to provide enforcement. It is available with
NSNA network access devices.
NSNA network access devices including Nortel Ethernet Switch
models - 325, 425, 450, 470 and 2500 series and Ethernet Routing
Switch models - 4500 series, 5500 series, 8300 and 8600 as well as
third-party switches.
VLANs and filters
Nortel Secure Network Access Switch
Using the Command Line Interface
NN47230-100 03.01 Standard
28 July 2008
Copyright © 2007,2008 NortelNetworks
.