Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


Check for antivirus and firewall while connecting to VPN

Posted on 2014-08-12
Medium Priority
Last Modified: 2015-01-05
Hi, is there any way to check if the client portable device that is trying to establish a VPN connection has antivirus software installed and firewall enabled? if not we would like not to allow the connection. Would be nice to check if antivirus is up to date. Currently most clients use Sonicwall SSL VPN.
Question by:mavrukin

Expert Comment

ID: 40255128
check through  Sonicwall firewall log if can establish or not.
LVL 19

Accepted Solution

Miguel Angel Perez Muñoz earned 1000 total points
ID: 40255132
SCCM 2012 can be configure to do this. And, can configure remediation server and install antivirus and do an analysis before vpn connection finishes: http://msdn.microsoft.com/en-us/library/dd125378(v=ws.10).aspx
LVL 23

Expert Comment

ID: 40255133

It depends on what software you are using as a VPN endpoint but what you are trying to pull off is using NAP (network Access Protection). This feature enables you to only allow access to your network after a set of requirements is fulfilled (being virusscanner up-to-date or latest windows patches installed).

Microsoft server 2012 has a new feature attached to RRAS which is called NAP, you can set a specific set of policies before a user connects to the network using VPN. I have heard though (haven't tested it myself) that it is somewhat cluncky mostly because it seems to mostly check on Microsoft settings.

You can also off course use a different VPN endpoint, they all support NAP these days.
LVL 38

Assisted Solution

by:Rich Rumble
Rich Rumble earned 1000 total points
ID: 40256953
You are looking for NAC, have a look at ForeScout, they are the leader in that field, but it's a paper tiger to use NAC if you ask me, and you can read why I say that here: http://www.experts-exchange.com/Security/Misc/A_12736-Bring-Your-Own-Device-Security-NAC-MDM.html

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Your business may be under attack from a silent enemy that is hard to detect. It works stealthily in the shadows to access and exploit your critical business information, sensitive confidential data and intellectual property, for commercial gain. T…
The article explains the process to deploy a Self-Service password reset portal I developed a few years ago. Hopefully, it will prove useful to someone.  Any comments, bug reports etc. are welcome...
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Suggested Courses

580 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question