Access Control States
NAC 800 provides on-going feedback on the access status of endpoints in the
Endpoint activity window as follows:
TIP:
To view access status, see "Viewing Endpoint Access Status" on page 4-16.
■
Quarantined –
•
By NAC Policy – The endpoint has been assigned a quarantined IP
address. For example, an endpoint could have been quarantined
because it failed a test or it could not be tested.
By administrator – The administrator has selected Temporarily quar-
•
antine for an assigned time frame.
•
Post-connect – The endpoint has been assigned a quarantined IP
address because a post-connect service requested the quarantine.
•
Blacklisted – The endpoint has been assigned a quarantined IP
address because it was designated to always be quarantined in the
System Configuration>>Exceptions>>Blacklist window.
■
Awaiting quarantine – A temporary state indicating that an endpoint
is in the process of being quarantined.
Granted access –
■
•
By NAC Policy – The endpoint has been assigned a non-quarantined
IP address. For example, an endpoint could have access because it
passed a test, or could not be tested but is allowed access.
•
Temporarily by NAC policy – The endpoint has been assigned a non-
quarantined IP address. For example, an endpoint could have access
because it failed a test but was allowed temporary access.
By administrator – The administrator has selected Temporarily grant
•
access and assigned a time frame.
•
By Access Mode – Endpoints are tested in allow all mode; however,
they are always given access to the production network.
•
Whitelisted – The endpoint has been assigned a non-quarantined IP
address because it was designated to always have access in the System
Configuration>>Exceptions>>Whitelist window.
■
Awaiting access – A temporary state indicating that an endpoint is in
the process of being allowed access.
Disconnected – NAC 800 cannot communicate with the endpoint.
■
Endpoint Activity
Access Control States
4-9