AW: IDS

["Barthel, Frank" <Frank.Barthel () t-systems com>]

Hi

this is not a function of an IDS.
There are several tools which can check if the client is compliant.

Look at Cisco NAC or McAfee ePO with MPE.
These are implementations that first put the client in a quarantine VLAN, then check the client and push the needed 
updates to the client.
After that, the port of the switch (NAC) or the desktop-firewall-policy (MPE) will grant the network access.

Regards

Frank

> -----Ursprüngliche Nachricht-----
> Von: Gopinath_Ramamoorthy () satyam com 
> [mailto:Gopinath_Ramamoorthy () satyam com] 
> Gesendet: Montag, 3. Juli 2006 07:58
> An: focus-ids () securityfocus com
> Betreff: IDS
>
> Dear Team...
>
>
> I have used few IDS in my network, doesn't found them working 
> in the way i wanted.
>
> My requirement is when there is a machine / laptop are 
> connected to my network, which is not updated with the 
> current Patches, Security updates which is being approved 
> needs to be reported to the Sys admin and immediate necessary 
> steps would be taken.
>
> Is it possible to have this & if so suggest me the options pls.
>
>
> Regards,
>
> Gopi
>
> --------------------------------------------------------------
> ----------
> Test Your IDS
>
> Is your IDS deployed correctly?
> Find out quickly and easily by testing it with real-world 
> attacks from CORE IMPACT.
> Go to 
> http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
> to learn more.
> --------------------------------------------------------------
> ----------

------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
------------------------------------------------------------------------