Scanning non Company Computers for network access

[Guest]

This may not be the right forum for this but I'll see if I get any bites. I
am looking for a single scanning solution to scan non company laptops for
Current MS Critical Patching, Current virus definitions and system scans,
could possibly output the Host Name and MAC Address, etc.
Currently the way our network is set up we manually scan non company assets
from Vendors, Consultants or other visitors that need a network connection
(usually need access to the internet for email and such). The process is
tedious and not very friendly for us or the visitor.
I would like to find a single scanning tool to run or a way we can protect
our network and still grant them the access they need. We do have a couple
dedicated lines but its not practical, we need to be able to let them connect
throughout the building.

Any Ideas?

 

[Steven L Umbach]

I am not sure it can do all you want [maybe not antivirus info] but
Languard would be a good start and I believe you can try it for free. There
is also a version of Nessus called Newt for Windows networks. I have not
tried it myself but there are also quarantine systems available including an
upcoming one from Microsoft but I understand that it is a way off -
Vista/Longhorn. You may also want to look at using ipsec to protect domain
resources from non domain computers. Microsoft has an excellent article on
implementing such as described in the second link below. --- Steve

http://www.gfi.com/lannetscan/ --- Languard
http://www.microsoft.com/technet/security/topics/architectureanddesign/ipsec/default.mspx
--- Server and Domain Isolation Using IPsec and Group Policy
http://www.symantec.com/Products/enterprise?c=prodinfo&refId=1304 ---
Symantec Network Access Control

 

[Mark]

Also have a look at Mirage Networks - www.miragenetworks.com

initial look is impressive and they claim to have patent pending on
their technology.

Mark

I am not sure it can do all you want [maybe not antivirus info] but
Languard would be a good start and I believe you can try it for free. There
is also a version of Nessus called Newt for Windows networks. I have not
tried it myself but there are also quarantine systems available including an
upcoming one from Microsoft but I understand that it is a way off -
Vista/Longhorn. You may also want to look at using ipsec to protect domain
resources from non domain computers. Microsoft has an excellent article on
implementing such as described in the second link below. --- Steve

http://www.gfi.com/lannetscan/ --- Languard
http://www.microsoft.com/technet/security/topics/architectureanddesign/ipsec/default.mspx
--- Server and Domain Isolation Using IPsec and Group Policy
http://www.symantec.com/Products/enterprise?c=prodinfo&refId=1304 ---
Symantec Network Access Control

This may not be the right forum for this but I'll see if I get any bites.
I
am looking for a single scanning solution to scan non company laptops for
Current MS Critical Patching, Current virus definitions and system scans,
could possibly output the Host Name and MAC Address, etc.
Currently the way our network is set up we manually scan non company
assets
from Vendors, Consultants or other visitors that need a network connection
(usually need access to the internet for email and such). The process is
tedious and not very friendly for us or the visitor.
I would like to find a single scanning tool to run or a way we can protect
our network and still grant them the access they need. We do have a couple
dedicated lines but its not practical, we need to be able to let them
connect
throughout the building.

Any Ideas?