Technical Information

Within the centralized Configuration Management Database (CMDB) all network devices (desktop pcs, note books, printers, etc.) are assigned to the proper VLANs. The CMDB fills and synchronizes the separated RADIUS database. The use of several linux-based RADIUS servers makes the security solution more fail-safe and resistant. Also the reliability increases with more synchronous RADIUS server and guarantees a high availability. For the PNAC solution no hardware exchange is necessary, only dot1x compatible switches are needed.

Switch management

As the graphic shows, every port has the same configuration, which makes the switch management easier and one only has to configure the BackBone connection. This allows the people who are responsible for the switches to concentrate on the VLAN ACL and will increase the security.

Graphic to illustrate the advantages of PNAC

Multiple locations

PNAC supports the usage of different locations. The VLANs can have different names, depending on their location (e.g.: Location A: Office is VLAN 100; Location B: Office is VLAN 150). Accordingly devices can be put into different VLAN depending on their location. For example an employee is put into the normal VLAN at location A, but at location B he is only in a VLAN where he won’t be able to access the development server.

Graphic to illustrate the advantages of PNAC