SNAC

Created: 25 Sep 2012 | 13 comments

SKP

Pls help me out for below policy that to templates within SEPM

1> Policy to find the non-compliance systems (windows patch missing, AV definition not update),If Yes Client should removed from network
2> Policy control what application clients should run and what they should not.

Discussion Filed Under:

Security, Network Access Control, Configuring

Login or register to post comments
Comments RSS Feed

Comments 13 Comments • Jump to latest comment

Ashish-Sharma

SNAC - Comment:25 Sep 2012 : Link

Hi,

Yes you can configure check attached artical

What all can you do with Symantec Network Access Control?

https://www-secure.symantec.com/connect/articles/what-all-can-you-do-symantec-network-access-control

Creating and testing a Host Integrity Policy

http://www.symantec.com/business/support/index?page=content&id=HOWTO11091

http://www.symantec.com/business/support/index?page=content&id=HOWTO55759

https://www-secure.symantec.com/connect/articles/working-custom-host-integrity-hi-policy-using-custom-requirement-logic

Note :If you have received your answer please don't forgot Mark As solution

Thanks In Advance

Ashish Sharma

SEPM Knowledgebase Documents

SKP

SNAC - Comment:25 Sep 2012 : Link

How to remove non-compliance systems from network....?

Ashish-Sharma

SNAC - Comment:25 Sep 2012 : Link

Hi,

You can create Policy from SNAC,

Do you have install SNAC ?

Thanks In Advance

Ashish Sharma

SEPM Knowledgebase Documents

SKP

SNAC - Comment:25 Sep 2012 : Link

Yes......... & SEPM Version 11 RU6 MP3

Ashish-Sharma

SNAC - Comment:25 Sep 2012 : Link

First you can Create policy

Check this artical.

https://www-secure.symantec.com/connect/articles/working-custom-host-integrity-hi-policy-using-custom-requirement-logic

Creating and testing a Host Integrity Policy

http://www.symantec.com/business/support/index?page=content&id=HOWTO11091

Check this thread

http://www.symantec.com/connect/forums/symantec-network-access-control-blockallow-access-mac-address

Thanks In Advance

Ashish Sharma

SEPM Knowledgebase Documents

SKP

SNAC - Comment:25 Sep 2012 : Link

I don't have any Enforcers accept only SNAC templates.

Ashish-Sharma

SNAC - Comment:25 Sep 2012 : Link

Hi,

Working with Custom HOST INTEGRITY (HI) Policy using the “CUSTOM REQUIREMENT LOGIC”

https://www-secure.symantec.com/connect/articles/working-custom-host-integrity-hi-policy-using-custom-requirement-logic

Thanks In Advance

Ashish Sharma

SEPM Knowledgebase Documents

SKP

SNAC - Comment:25 Sep 2012 : Link

How to remove non-compliance systems from network by custom HI Policy

Ashish-Sharma

SNAC - Comment:25 Sep 2012 : Link

Hi,

Predefined simple to use requirements

Antivirus Requirement – You can set Antivirus Requirement in your organization that means your clients should be running the Antivirus you have specified or it will be rejected from network or sent to Quarantined network. Antivirus Products that SNAC supports are AnhLab V3 Internet Security, AVG Internet Security/Antivirus, Bit Defender Internet Security/Total Security, CA eTrust Antivirus/InoculateIT, Kaspersky Antivirus/Internet Security, McAfee VirusScan, Microsoft ForeFront Client Security, Microsoft Live OnceCare Antivirus, Norton Antivirus, Panda Antivirus, Sophos Antivirus, Symantec Endpoint Protection, Trend Micro OfficeScan Corporate Edition and Trend Micro Pc-Cillin. With these Antivirus Products you can check if they are installed, Running and having latest definitions. If not then you can redirect them to a location where the Antivirus will be automatically installed or the users can download and install the AV software or the latest virus definitions. If the Antivirus is turned off you can also enable the antivirus.

You can also select Any Antivirus, in this option you can check the definitions and direct them to download the definitions but the options for installing or starting a specific application are not available.

Thanks In Advance

Ashish Sharma

SEPM Knowledgebase Documents