Search
 Advanced SearchView Cart   Checkout   
 Location:  Home » Books » Networking » Cisco NAC Appliance: Enforcing Host Security with Clean Access (Networking Technology: Security)December 1, 2008  
Browse
Books
Computers
Electronics
Related Categories
• Networking
Computer Science
New & Used Textbooks
Custom Stores
Specialty Stores
• General AAS
Computer Science
New & Used Textbooks
Custom Stores
Specialty Stores
• General AAS
New & Used Textbooks
Custom Stores
Specialty Stores
Books
• General AAS
Qualifying Textbooks
Custom Stores
Specialty Stores
Books
• General AAS
Internet
Home Computing
Computers & Internet
Subjects
• Privacy
Business & Culture
Computers & Internet
Subjects
Books
• Security+
Exams
Certification Central
Computers & Internet
Subjects
• Cisco
Publisher
Certification Central
Computers & Internet
Subjects
• Office
Certification Central
Computers & Internet
Subjects
Books
• General
Certification Central
Computers & Internet
Subjects
Books
• General AAS
Certification Central
Computers & Internet
Subjects
Books
• Bridges & Routers
Networks, Protocols & APIs
Networking
Computers & Internet
Subjects
• Networks
Networks, Protocols & APIs
Networking
Computers & Internet
Subjects
• General
Networks, Protocols & APIs
Networking
Computers & Internet
Subjects
• General AAS
Networks, Protocols & APIs
Networking
Computers & Internet
Subjects
• Network Security
Networking
Computers & Internet
Subjects
Books
• General
Software
Computers & Internet
Subjects
Books
• General AAS
Software
Computers & Internet
Subjects
Books
• General
Computers & Internet
Subjects
Books
• General AAS
Computers & Internet
Subjects
Books
• Paperback
Binding (binding)
Refinements
Books
• Printed Books
Format (feature_browse-bin)
Refinements
Books
Cisco NAC Appliance: Enforcing Host Security with Clean Access (Networking Technology: Security)
Cisco NAC Appliance: Enforcing Host Security with Clean Access (Networking Technology: Security)
Authors: Chad Sullivan, Jamey Heary, Alok Agrawal, Jerry Lin
Publisher: Cisco Press
Category: Book

List Price: $65.00
Buy New: $44.86
You Save: $20.14 (31%)
Buy New/Used from $39.58

Avg. Customer Rating: 5.0 out of 5 stars(4 reviews)
Sales Rank: 584459

Languages: English (Original Language), English (Unknown), English (Published)
Media: Paperback
Edition: 1
Number Of Items: 1
Pages: 576
Shipping Weight (lbs): 1.8
Dimensions (in): 8.9 x 7.3 x 1.3

ISBN: 1587053063
Dewey Decimal Number: 005.8
EAN: 9781587053061
ASIN: 1587053063

Publication Date: August 16, 2007
Availability: Usually ships in 1-2 business days
Similar Items:

  • Cisco Network Admission Control, Volume II: NAC Deployment and Troubleshooting (Networking Technology)
  • Security Monitoring with Cisco Security MARS (Networking Technology: Security)
  • Cisco ASA, PIX, and FWSM Firewall Handbook (2nd Edition) (Networking Technology: Security)
  • Cisco Network Admission Control, Volume I: NAC Framework Architecture and Design (Networking Technology)
  • Cisco ASA: All-in-One Firewall, IPS, and VPN Adaptive Security Appliance (Networking Technology)
Editorial Reviews:

Product Description

Cisco NAC Appliance

Enforcing Host Security with Clean Access

Authenticate, inspect, remediate, and authorize end-point devices using Cisco NAC Appliance

Jamey Heary, CCIE No. 7680

Contributing authors: Jerry Lin, CCIE No. 6469,

Chad Sullivan, CCIE No. 6493, and Alok Agrawal

With today's security challenges and threats growing more sophisticated, perimeter defense alone is no longer sufficient. Few organizations are closed entities with well-defined security perimeters, which has led to the creation of perimeterless networks with ubiquitous access. Organizations need to have internal security systems that are more comprehensive, pervasive, and tightly integrated than in the past.

Cisco Network Admission Control (NAC) Appliance, formerly known as Cisco Clean Access, provides a powerful host security policy inspection, enforcement, and remediation solution that is designed to meet these new challenges. Cisco NAC Appliance allows you to enforce host security policies on all hosts (managed and unmanaged) as they enter the interior of the network, regardless of their access method, ownership, device type, application set, or operating system. Cisco NAC Appliance provides proactive protection at the network entry point.

Cisco NAC Appliance provides you with all the information needed to understand, design, configure, deploy, and troubleshoot the Cisco NAC Appliance solution. You will learn about all aspects of the NAC Appliance solution including configuration and best practices for design, implementation, troubleshooting, and creating a host security policy.

Jamey Heary, CCIE No. 7680, is a security consulting systems engineer at Cisco, where he works with its largest customers in the northwest United States. Jamey joined Cisco in 2000 and currently leads its Western Security Asset team and is a field advisor for its U.S. Security Virtual team. His areas of expertise include network and host security design and implementation, security regulatory compliance, and routing and switching. His other certifications include CISSP, CCSP, and Microsoft MCSE. He is also a Certified HIPAA Security Professional. He has been working in the IT field for 13 years and in IT security for 9 years.

  • Understand why network attacks and intellectual property losses can originate from internal network hosts
  • Examine different NAC Appliance design options
  • Build host security policies and assign the appropriate network access privileges for various user roles
  • Streamline the enforcement of existing security policies with the concrete measures NAC Appliance can provide
  • Set up and configure the NAC Appliance solution
  • Learn best practices for the deployment of NAC Appliance
  • Monitor, maintain, and troubleshoot the Cisco NAC Appliance solution

This security book is part of the Cisco Press Networking Technology Series. Security titles from Cisco Press help networking professionals secure critical data and resources, prevent and mitigate network attacks, and build end-to-end self-defending networks.

Category: Cisco Press?Security

Covers: End-Point Security



Customer Reviews:

5 out of 5 stars Great book on a difficult subject   April 22, 2008
I found this to be a very useful book if you are interested in developing a cohesive and viable NAC policy and creating sound and effective NAC enforcement. NAC is a hot buzz-word right now and very few companies have a real handle on how to make use it. This book goes a long way toward separating fact from fiction and making NAC an effectie piece of network security.


5 out of 5 stars This book delivers!   September 11, 2007
  1 out of 1 found this review helpful

Over the last couple years NAC has moved from being a niche solution and is becoming a mainstream requirement for enterprise organizations. This creates a new set of skills for the network engineer to master. Unfortunately there have been few resources for self study, until now. This book provides everything you need to get started with NAC, weather you are just evaluating the technology or rolling out a full deployment. Get this book and you will have the skills that are sure to be a requirement of any network engineer in the very near future.

Why this book?

1. Credible - The authors field experience with NAC is evident as you read the book. This wasn't written in some ivory tower, these are folks who work on the technology with real world customers every day.

2. Comprehensive - ROI, design options, best practices, configuration examples, troubleshooting. Weather you are evaluating, implementing, or deploying there is something for everyone.

3. Concise - Weighing in at 576 pages it's hardly a short book, however give the amount of ground covered I would call it concise. The book is light on filler material, and since it isn't a certification guide there is anything in there just because it's on the test. Everything in this book is about how to get the job done.

To summarize... I highly recommend this book. Pick up a copy and get up to speed on this fast growing technology.



4 out of 5 stars Great volume : Consider buying   August 26, 2007
  1 out of 1 found this review helpful


The Cisco Self Securing Network platform is currently structured around several cornerstone technologies of which the Cisco Clean Access technology is a leading component. The Cisco Clean Access technology is one of several industry wide Network Admission Control (NAC) technologies which rely on a combination of client-server components. The Cisco Clean Access suite includes a client component which could be host-installed applet or a browser based applet that can read basic configuration data from a host machine and communicate compliance to enterprise defined rules/policies which are pre-defined on a clean access server appliance and other coorperating systems. The book, Cisco NAC Appliance is a good guide for administrators deploying this complex set of solutions brought from Perfigo Inc. after Perfigo's acquisition by Cisco 2006.

The book's organization and tone is aimed at security architects, security managers and security administrators. While a security architect will better understand the various deployment options and thus the place of the Cisco NAC framework in an enterprise, security managers will get a comprehensive enough view of the Cisco NAC framework to make the judgment call on actual deployment of the infrastructure and of course make decisions on cost/facility and better grapple with the potential cost benefit requests from enterprise's executive and the security administrator will have a quick guide handbook to help wade through the myriads of documentations from Cisco on its evolving SAFE architecture in general and the NAC framework in particular.

The organization of this book is excellent for the intended audience; six parts covering the basics of host security landscape, design of Cisco NAC appliance, developing a host security policy, the Cisco NAC configuration, some deployment best practices, and of course NAC appliance maintenance and troubleshooting. The six parts are laid out in fifteen accessible chapters spanning more than 500 pages with generous amount of configuration examples and screenshots.

With Cisco now having more than 45% market share in the endpoint access control market, books like these can only increase in importance as a guide to organizations grappling with the decision on what and where to deploy these technologies.

And for this volume, the taste of the pudding remains in the eating. So if you don't have a copy yet, go grab one (so long as you are interested in some endpoint security solutions now or at some point in the future). As for rating, I'll give it my best rating so far, four star out of five.



5 out of 5 stars Exceeded Expectations   August 21, 2007
  3 out of 3 found this review helpful

I want to start out by saying that this book completely exceeded my expectations for the first NAC Appliance book. I wish this was published 3 years ago. The author clearly articulates the business benefits of NAC, including how NAC provides return on investment (ROI), which gives any reader the know-how to wisely purchase Cisco NAC Appliance. He also shows his technical expertise by diving extremely deep into the inner workings of Cisco NAC Appliance, which gives engineers, consultants, and operations the information they need to successfully deploy or maintain the product.

This book shows great details into the process flows of In-Band & Out-of-Band users, Clean Access Agent (CAA) users and network scanning users. The information on the different deployment options and how to use them in diverse environments is great to start your NAC Design. This book makes the confusing topics seem easy and manageable.

Some of the highlights that caught my eye and I thought everyone would like were:

- Chapter on Host Security Policy - An amazing deal of information on how to design/create a Host Security Policy as it relates to NAC Appliance is invaluable to deployments

- Exploration of High Availability and Load Balancing - Information on how to load balance Clean Access Servers using the CSM, CSS, ACE and PBR cannot be found anywhere else. This includes saving money on Failover Bundles by using N+1 Failover

- Layer 3 OOB Deployment options - Walk through of the benefits of the different methods of deploying L3 OOB, e.g. PBR, ACLS, VPNs, etc.

- Deployment Best Practices - An entire chapter on how to plan, schedule, and keep all parties happy for your NAC Appliance deployment

- Monitoring & Troubleshooting information - detailed list of all logs located on the CAM and CAS, as well as the information on how to troubleshoot and monitor online users

All in all this is a great book and I would recommend it for all people interested in Buying, Deploying, Operating, or Troubleshooting Cisco NAC Appliance. This is definitely a great reference manual to have at your desk!


Powered by: Dknc, inc. and Amazon.com


For your safety and security, orders are processed through amazon.com