Hi
this is not a function of an IDS.
There are several tools which can check if the client is compliant.
Look at Cisco NAC or McAfee ePO with MPE.
These are implementations that first put the client in a quarantine VLAN, then
check the client and push the needed updates to the client.
After that, the port of the switch (NAC) or the desktop-firewall-policy (MPE)
will grant the network access.
Regards
Frank
-----Ursprüngliche Nachricht-----
Von: Gopinath_Ramamoorthy@satyam.com
[mailto:Gopinath_Ramamoorthy@satyam.com]
Gesendet: Montag, 3. Juli 2006 07:58
An: focus-ids@securityfocus.com
Betreff: IDS
Dear Team...
I have used few IDS in my network, doesn't found them working
in the way i wanted.
My requirement is when there is a machine / laptop are
connected to my network, which is not updated with the
current Patches, Security updates which is being approved
needs to be reported to the Sys admin and immediate necessary
steps would be taken.
Is it possible to have this & if so suggest me the options pls.
Regards,
Gopi
--------------------------------------------------------------
----------
Test Your IDS
Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world
attacks from CORE IMPACT.
Go to
http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
--------------------------------------------------------------
----------
------------------------------------------------------------------------
Test Your IDS
Is your IDS deployed correctly?
Find out quickly and easily by testing it
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
------------------------------------------------------------------------
