Network Access Control (NAC) in Kaspersky Security Center 10



Kaspersky Security Center 10


Network Access Control (NAC) in Kaspersky Security Center 10

Back to "Server Management"
2013 Nov 27 ID: 10591

Network Access Control (NAC) is a set of technical means to implement network access policies. Networks access policies normally limit access of network devices to network resources, depending on the devices' status. A computer's status, in its turn, may depend on its networks parameters, anti-virus protection status etc. 

In the wide sense, the designation of NAC is fairly simple. When devices are being connected to the network, the system ensures that they comply with the rules of access to the enterprise resources. On this basis, it automatically determines the level of access granted, which may be full, limited or denied.

The following elements contribute to Kaspersky NAC functioning:

  1. NAC Enforcers are special agents that detect devices and redirect network traffic to apply security policies. Network agent may be called Enforcer if it includes the driver klmon.sys installed.

  2. Posture Validation Server is a management center for all Enforcers as it processes data received from them. In Kaspersky Security Center 10, the Administration Server acts as a Posture Validation Server;

  3. Access policy is configured on the Posture Validation Server and is applied to Enforcers. It determines network access rules. In the case of Kaspersky Security Center 10, network access policy is a part of a common Network agent policy.

  4. Network devices are any devices that have a MAC address.


1. NAC Enforcer designation


2. Functions of the NAC Enforcer component


3. How to enable/disable NAC


4. How to configure NAC rules

Was this information helpful?
Yes No


Have you found what you were looking for?

Please let us know how we can make this website more comfortable for you

Send feedback Send feedback

Thank you!

Thank you for submitting your feedback.
We will review your feedback shortly.