QuickLinks

FAQs: General Networking

» How does the Network Authentication and Validation system work?
» Why Are We Introducing this Solution Now?
» How Does Validation Work?
» What is Clean Access Agent?
» What Validation Checks are being performed?
» How Long Do the Validation Checks Take?
» How Does Validation Work for Macintosh Users?
» What Remediation is Available?

Key Terms:

  • Network Access Process: The process of authentication and validation of your computer required for network access.
  • Authentication: The process of verifying your access to the network by confirming your username and password and associating it with your computer.
  • Validation: The process of confirming that certain security measures are in place on your computer.


Q: How does the Network Authentication and Validation system work?

The computer security system performs the following functions:

  • Requires authentication to the network
  • Validates whether the system connecting to the network meets the minimum security standards
  • Quarantines the system until it meets the minimum security standards
  • Provides access to the remediation sites
  • Once the system is validated as “clean,” allows access to the network

The computer security system performs the following functions.


Q: Why Are We Introducing this Solution?

There are many medium or higher rated threats (List of Threats) that infected computer systems every year. We needed an effective solution to effectively quarantine systems until proven “clean” and to ensure unprotected systems that are infected were cleaned before entering the network. From investigation of solutions used at other Universities, it has been determined that the best way to prevent this from happening is to insure that virus software and OS critical update/patches are current and maintained.


Q: How Does Validation Work?

The validation solution will “trap” any Internet browser access and redirect the user to a web page that instructs the user to download and install a validation Agent.

Once launched, the client installs the validation rules and processes these. If the workstation fails the test, it is allowed Internet access only to the remediation sites for a period of time. Once corrected, full network access is provided and a timer is set for the connection.

The connection remains intact until the timer expires; at that time, the connection is reset and the user must re-validate by launching the client.


Q: What is ForeScout?

ForeScout is an automated security control platform that verifies updated anti-virus software to ensure the network remains free of viruses. All students and vistors must authenticate with ForeScout to use the network.


Q: What Validation Checks are being performed?

The following are some examples of validation checks that can be performed:

  • Run scans for known vulnerabilities
  • Check for current release of anti-virus software and current virus definitions
  • Check for current Windows OS Patches for Windows machines.


Q: How Long Do the Validation Checks Take?

The checks can take between 15 seconds to a few minutes, depending on how long it has been since you last completed updates.


Q: How Does Validation Work for Macintosh Users?

Macintosh users must authenticate by logging in via a web page. The only validation check for Macintosh systems is anti-virus software. 


Q: What Remediation is Available?

Microsoft Windows Patch Failure. If the user’s system fails the check for current critical OS patches, the user is instructed to click on the URL for the Microsoft Windows update site and follow the instructions. Additionally, the user is provided the option to download a program that can assist in configuration of Microsoft Windows automatic update.

Anti-Virus Failure. If the user’s system fails the check for current anti-virus software, the user is provided a link to supported Anti-Virus software none is found or redirected to download current virus definitions if antivirus software is found on the system.

Host IDS (Intrusion Detection). If the user’s system fails the check for current IDS/IPS host agent, the user is provided a download either for the software itself or for the agent files updates.

PrintFriendly and PDFPrint Page
© Copyright 2013 Becker College. All Rights Reserved. | Terms of Use | Privacy Policy