C. Services & Applications
1. TRUSTED
a) Microsoft Active Directory (AD) Domain: In order to resolve the issues inherent in a peer-to-peer network, a centralized means of user authentication and resource sharing must be implemented. Microsoft Active Directory (AD) is a centrally administered, hierarchical structure designed to manage user access to shared network resources in a domain. Windows Server 2012 R2 Datacenter edition operating system (OS) is required to establish and manage the company’s AD domain. The Datacenter edition licenses a company to create multiple virtual instances of the on a single device [51]. The first virtual machine will be configured as a Domain Controller (DC). The DC is responsible for access control to all services for all users in the domain, and establishes the security policies followed by all users and devices joined to the domain. All other services not required for the server to perform as the DC will be disabled in order to reduce the server’s attack surface.
b) Network Access Control (NAC): Company workstations and devices must have appropriate software, patches, updates and current AV definitions before being allowed to connect to the network. To prevent unauthorized devices, and company devices that do not meet the requirements specified in the Network Health …show more content…
A captive portal forces a device connecting to the wireless network to display a specific web page, before allowing access to the Internet [57]. This web page should be customized to show company information, and require guests to accept a user agreement before being permitted access to the Internet through company resources. In addition, the captive portal will direct the guest to get the current Wi-Fi password from the company receptionist. The Cisco 500 Series Wireless Access Point comes with a built-in, customizable captive portal
1. TRUSTED
a) Microsoft Active Directory (AD) Domain: In order to resolve the issues inherent in a peer-to-peer network, a centralized means of user authentication and resource sharing must be implemented. Microsoft Active Directory (AD) is a centrally administered, hierarchical structure designed to manage user access to shared network resources in a domain. Windows Server 2012 R2 Datacenter edition operating system (OS) is required to establish and manage the company’s AD domain. The Datacenter edition licenses a company to create multiple virtual instances of the on a single device [51]. The first virtual machine will be configured as a Domain Controller (DC). The DC is responsible for access control to all services for all users in the domain, and establishes the security policies followed by all users and devices joined to the domain. All other services not required for the server to perform as the DC will be disabled in order to reduce the server’s attack surface.
b) Network Access Control (NAC): Company workstations and devices must have appropriate software, patches, updates and current AV definitions before being allowed to connect to the network. To prevent unauthorized devices, and company devices that do not meet the requirements specified in the Network Health …show more content…
A captive portal forces a device connecting to the wireless network to display a specific web page, before allowing access to the Internet [57]. This web page should be customized to show company information, and require guests to accept a user agreement before being permitted access to the Internet through company resources. In addition, the captive portal will direct the guest to get the current Wi-Fi password from the company receptionist. The Cisco 500 Series Wireless Access Point comes with a built-in, customizable captive portal