Speaker
Paige Stafford
(ORNL)
Description
ORNL’s Network Access Control manager (NACmgr) was developed to enforce ORNL network policies and perform network compliance checking. NACmgr uses Simple Network Management Protocol (SNMP) to poll all the switches and routers on the network for active hosts every five minutes. It then joins information from other systems, such as network registration, harvested Dynamic Host Configuration Protocol (DHCP) logs, and the cyber compliance system, to determine which hosts to isolate from the network and how to do it.
This presentation is intended to be a follow-up to the NLIT 2007 presentation “NAC at ORNL” and will encompass the specifics of NACmgr design and operation. Target audience has some knowledge of basic computing, networking, and cyber security concepts.
Primary author
Paige Stafford
(ORNL)