Cisco has a knack for NAC. Heh-heh — I crack myself up.

According to Network World:

The upgrades would make it possible for customers to buy Cisco’s NAC appliance - the NAC option most of its customers opt for first — and later migrate to its network-based NAC Framework architecture without having to swap out as many elements.

Network Access Control (NAC) can be a pain. It’s an extremely useful security technolgy but it can have unintended consequences if not tested thoroughly in an organization’s test network before deploying. Organization’s also have to recognize that NAC products have their limitations. This was demonstrated at last spring’s BlackHat conference where two German security researchers were able to spoof Cisco’s Trust Agent to allow a totally noncompliant computer to access a Cisco-protected network. Cisco sees its own limitations and is now seeking to collaborate with other security products. A NAC system is a good first-line defense but it cannot be depended upon to completely secure a network.