Your organization has rolled out a new system that leverages Network Access Control (NAC) to enforce security compliance on all devices before they are granted network access. Despite having the latest security patches and antivirus software installed, an employee's device is unable to access the network. Which aspect of the NAC is most likely hindering the access for this otherwise compliant device?
Network access policy does not include the correct compliance requirements
Remote Authentication Dial-In User Service (RADIUS) server not authenticating the user's credentials
Posture assessment component incorrectly evaluating the device's compliance
Captive portal blocking the device after a failed interaction with the user
The posture assessment component of a Network Access Control system is responsible for verifying if a connecting device complies with the security policies by checking various attributes like antivirus presence and patch levels. When a device that should be compliant is denied access, the likely culprit is an issue with the posture assessment's recognition of the device's compliance status, which might be caused by misconfiguration or lack of proper updates to the compliance requirements. It's crucial for the NAC setup to correctly and accurately assess devices against the security policy to prevent access issues for compliant devices. In contrast, a Remote Authentication Dial-In User Service (RADIUS) server is primarily concerned with authenticating user credentials, and while it may interface with NAC, it would not perform posture assessment. Captive portals are typically used for user interaction and credential input, and they do not perform posture assessments either. Similarly, policy definitions detail what is required for compliance but wouldn't directly cause access denial if the device meets those requirements.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Network Access Control (NAC)?
Open an interactive chat with Bash
What is a posture assessment in the context of NAC?