I've been tasked with locking down our network so that only authorized company pc's/laptops can run on the network. This eliminates vendors and home pc's from connecting to the network, possibly launching viruses, etc.
I've came up with a couple solutions:
1. Integrating 802.1x technology on our switches, end nodes and Cisco Secure server. More or less if you don't authenticate through Cisco Secure, your port doesn't get turned on.
2. MAC filtering through Cisco Secure. If your mac isn't in the database, you can't get on. This may be a huge undertaking and is extremely micro-managed, as well as may cause login times to be very slow.
Anyone else have any other suggestions?
I've came up with a couple solutions:
1. Integrating 802.1x technology on our switches, end nodes and Cisco Secure server. More or less if you don't authenticate through Cisco Secure, your port doesn't get turned on.
2. MAC filtering through Cisco Secure. If your mac isn't in the database, you can't get on. This may be a huge undertaking and is extremely micro-managed, as well as may cause login times to be very slow.
Anyone else have any other suggestions?
