NAC

Definition

Network Access Control (NAC) is a security solution that enforces policy compliance on devices seeking to access a network. It ensures that only authorized and compliant devices can connect, thereby reducing the risk of unauthorized access and potential security breaches. NAC systems typically assess the security posture of devices, such as checking for updated antivirus software or operating system patches, before granting network access.

Secure Settings Example

nac_policy:
  - name: "Corporate Network Access"
    conditions:
      - device_compliance: true
      - antivirus_installed: true
      - os_patch_level: "latest"
    actions:
      - grant_access: true

Insecure Settings Example

nac_policy:
  - name: "Open Network Access"
    conditions:
      - device_compliance: false
    actions:
      - grant_access: true