What is the next action taken by the Cisco NAC Appliance after it identifies vulnerability on a client device?

What is the next action taken by the Cisco NAC Appliance after it identifies vulnerability on a client device?
A . Denies the client network resource access
B . Repairs the effected devices
C . Generates a Syslog message
D . Permits the client but limits to guest access

View Answer

Answer: B

Explanation:

The Cisco NAC Appliance (formerly Cisco Clean Access) is a product that allows network administrators to authenticate, authorize, evaluate, and remediate wired, wireless, and remote users and their machines prior to allowing users onto the network. It identifies whether networked devices such as laptops, IP phones, personal digital assistants, or printers are compliant with an organization’s security policies, and repairs any vulnerabilities before permitting access to the network. NAC Appliance lets you block access or quarantine users who do not comply with your security requirements, NAC Appliance enforces security policies by blocking, isolating, and repairing noncompliant machines in a quarantine area without needing administrator attention. Quarantining allows remediation servers to provide operating system patches and updates, virus definition files, or endpoint security solutions to compromised or vulnerable devices. Since there is no any word regarding quarantine in option B, denying access to clients would be the next action by NAC Appliance.