Check for antivirus and firewall while connecting to VPN

Hi, is there any way to check if the client portable device that is trying to establish a VPN connection has antivirus software installed and firewall enabled? if not we would like not to allow the connection. Would be nice to check if antivirus is up to date. Currently most clients use Sonicwall SSL VPN.
LVL 1
mavrukinAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

barrykflCommented:
check through  Sonicwall firewall log if can establish or not.
0
Miguel Angel Perez MuñozCommented:
SCCM 2012 can be configure to do this. And, can configure remediation server and install antivirus and do an analysis before vpn connection finishes: http://msdn.microsoft.com/en-us/library/dd125378(v=ws.10).aspx
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
rhandelsCommented:
Hey,

It depends on what software you are using as a VPN endpoint but what you are trying to pull off is using NAP (network Access Protection). This feature enables you to only allow access to your network after a set of requirements is fulfilled (being virusscanner up-to-date or latest windows patches installed).

Microsoft server 2012 has a new feature attached to RRAS which is called NAP, you can set a specific set of policies before a user connects to the network using VPN. I have heard though (haven't tested it myself) that it is somewhat cluncky mostly because it seems to mostly check on Microsoft settings.

You can also off course use a different VPN endpoint, they all support NAP these days.
0
Rich RumbleSecurity SamuraiCommented:
You are looking for NAC, have a look at ForeScout, they are the leader in that field, but it's a paper tiger to use NAC if you ask me, and you can read why I say that here: http://www.experts-exchange.com/Security/Misc/A_12736-Bring-Your-Own-Device-Security-NAC-MDM.html
-rich
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Security

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.