Cisco NAC Guest Server Datasheet

Data Sheet
Cisco NAC Guest Server
Product Overview
®
Cisco NAC Guest Server facilitates the creation of guest accounts for temporary network access
by permitting any internal user to sponsor a guest and create the guest account in a simple and
secure manner. In addition, the whole process is recorded in a single place and stored for later
reporting, including details of the network access activity.
Applications
Cisco NAC Guest Server is ideal for organizations that may need to provide Internet access to
visiting customers and partners. Productivity demands and advances in mobility have transformed
enterprises into major “hot spots.” The Cisco NAC Guest Server can vastly simplify the process of
offering guest access accounts in a simple, secure, and flexible way.
Features and Benefits
Cisco NAC Guest Server enables your organization to do the following:
●
Decrease deployment and management costs: Cisco NAC Guest Server allows trusted
employees to create guest accounts quickly and securely. This removes the burden from IT
and helpdesk personnel.
●
Reduce deployment risk: Automating temporary account provisioning with a fixed policy
reduces the risk of human error and allows for removal at the correct time.
●
Improve productivity for guests: The simplicity of creating guest accounts will lead to an
uptake of guest usage and the productivity benefits that are associated with providing guest
access.
●
Improve customer and partner satisfaction: Providing guest access for visitors greater
collaboration. Customers and partners alike appreciate this capability.
Sponsor Authentication
Cisco NAC Guest Server provides the ability for sponsors—employees of the host company—to
create guest accounts. Sponsors are authenticated against the Web interface on the guest server
and are granted permissions based upon their role. The administrator decides which policies
should be applied against each user role.
Authentication of the sponsor is performed against either an internal user account database
defined by the administrator, or against the organization’s Active Directory implementation.
Sponsors are assigned to a role based upon the groups they belong to in Active Directory or they
are assigned to a user on a local database. Sponsors can be given role-based permissions to
create accounts, edit accounts, suspend accounts and run reporting. These permissions can be
granted to only accounts they created, all accounts, or not granted at all.
All contents are Copyright © 1992–2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 1 of 5
Data Sheet
Guest Account Creation
Cisco NAC Guest Server creates accounts based upon the policy established for both usernames
and passwords. Usernames can be based on the guest’s e-mail address, first/last name, or a
completely random username based upon a length and complexity that the administrator sets.
Passwords can also be created based upon the length and complexity required by corporate
authentication policies.
Account Provisioning
Accounts are provisioned into the integrated database in the Cisco NAC Guest Server. From here
they can be automatically provisioned and managed on the Cisco NAC Appliance Manager, or
authenticated by Cisco wireless LAN controllers.
User Account Details
Passing user account details to a guest can be performed in many different ways, all of which are
completely configurable by the administrator. Access details can be printed as a hard copy to hand
to guests, sent as an e-mail prior to their arrival, or transmitted by SMS text message to guests’
mobile phones. This enables an additional level of security by auditing who was provided with the
details.
Regardless of how access details are given, the content is fully customizable. Administrators can
add details such as additional instructions or an acceptable use policy for guests to acknowledge.
Tight Integration with Cisco NAC Appliance
Cisco NAC Guest Server integrates with Cisco NAC Appliance through its API. This way the guest
accounts can be controlled directly on the guest server, including creation, editing, suspension,
and deletion of accounts. The Cisco NAC Guest Server then controls these accounts on the Cisco
NAC Appliance Manager through its API. In addition the guest server receives accounting
information from the NAC solution to enable full reporting of the entire experience.
Tight Integration with Cisco Wireless LAN Controller
Cisco NAC Guest Server integrates with Cisco wireless LAN controllers through the RADIUS
protocol. This way the guest accounts are controlled directly on the guest server, including
creation, editing, and deletion of accounts. The wireless LAN controller need only be pointed
toward the guest server to authenticate guest users. In addition the guest server receives
accounting information from the wireless LAN controller to enable full reporting of the entire
experience.
Product Architecture
The Cisco NAC Guest Server is a standalone component that can be added to Cisco NAC or
wireless deployments to integrate secure guest access. The guest server houses the database
and provides an integrated Web server to permit access to both the sponsor and administrator’s
user interfaces. It integrates with the Cisco NAC Appliance or Cisco wireless LAN controller to
provide the network access.
Figures 1 and 2 depict logical diagrams of how the Cisco NAC Guest Server works with the Cisco
NAC Appliance, first for a sponsor and then for a guest.
All contents are Copyright © 1992–2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 2 of 5
Data Sheet
Figure 1.
A Sponsor Using Cisco NAC Guest Server with a Cisco NAC Appliance
Figure 2.
A Guest Using Cisco NAC Guest Server with a Cisco NAC Appliance
Figures 3 and 4 depict logical diagrams of how the Cisco NAC Guest Server works with a Cisco
wireless LAN controller, first for a sponsor, then for a guest.
Figure 3.
Sponsor Using Cisco NAC Guest Server with a Cisco Wireless LAN Controller
All contents are Copyright © 1992–2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 3 of 5
Data Sheet
Figure 4.
Guest Using Cisco NAC Guest Server with a Cisco Wireless LAN Controller
Product Specifications
Table 1 lists the specifications for the Cisco NAC Guest Server.
Table 1.
Cisco NAC Guest Server Hardware Specifications
Feature
Specifications
Components
Processor
Dual-core Intel Xeon 2.33-GHz
Memory
1 GB PC2-4200 (2 x 512 MB)
Memory bus clock
1333-MHz FSB
Controller
Embedded SATA RAID controller
Hard disk
80-GB NPH SATA drive
Removable media
CD/DVD-ROM drive
Network Connectivity
● 2 x integrated Broadcom 10/100/1000 5708 NICs
● 2 x Intel e1000 Gigabit NICs (PCI-X)
Ethernet network interface cards (NICs)
10BASE-T cable support
Cat3, 4, or 5 UTP up to 328 ft (100m)
10/100/1000BASE-TX cable support
Cat5 UTP up to 328 ft (100m)
Interfaces
Serial ports
1
USB 2.0 ports
4 (two front, two rear)
Keyboard ports
1
Video ports
1
Mouse ports
1
External SCSI ports
None
System Unit
Form factor
Rack-mount 1 RU
Weight
35 lb (15.87 kg) fully configured
Dimensions
1.70 x 16.78 x 27.75 in. (4.32 x 42.62 x 70.49 cm)
Power supply
650W auto switching, PFC
Cooling fans
6; non-hot plug, nonredundant
BTU rating
2910 BTUs per hour (at 120 VAC); 2870 (at 240 VAC)
All contents are Copyright © 1992–2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
Page 4 of 5
Data Sheet
Ordering Information
Cisco NAC Guest Server is used in conjunction with a Cisco wireless LAN controller, the Cisco
NAC Appliance, or a combination of both. Deploying with the Cisco NAC Appliance offers
additional security features for both wired and wireless users, such as security policy assessment
and enforcement.
Table 2 contains the ordering information for the Cisco NAC Guest Server. Ordering information for
Cisco Wireless LAN Controllers is available in the data sheets at
http://www.cisco.com/en/US/products/hw/wireless/products_category_buyers_guide.html#linkpos=
3#number_3. Ordering information for the Cisco NAC Appliance is available in the ordering guide
at
http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5707/ps8418/ps6128/prod_bulletin0900aec
d805d0358.html.
Table 2.
Ordering Information
Product Name
Part Number
Cisco NAC Guest Server
NAC3310-GUEST-K9
Cisco Services
Cisco offers a wide range of services programs to accelerate customer success. These innovative
services programs are delivered through a unique combination of people, processes, tools, and
partners, resulting in high levels of customer satisfaction.
The unique Cisco Lifecycle approach to services helps you to protect your network investment,
optimize network operations, and prepare your network for new applications to extend network
intelligence and the power of your business. For more information about Cisco services, see Cisco
Technical Support Services or Cisco Advanced Services. Warranty information is available at
http://www.cisco.com/en/US/products/prod_warranties_item09186a00805f005b.html.
For More Information
For more information about the Cisco NAC Guest Server, visit
http://www.cisco.com/go/nac/appliance or contact your local account representative.
Printed in USA
All contents are Copyright © 1992–2007 Cisco Systems, Inc. All rights reserved. This document is Cisco Public Information.
C78-437498-00 10/07
Page 5 of 5

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project