IBM Tivoli and Cisco Manual

A SERVICE OF

next previous

72 Building a Network Access Control Solution with IBM Tivoli and Cisco Systems

Lab compliance

Organizations prefer having lab networks to test systems before deployment of

new solutions or equipment. Traffic from this zone to the primary network is

restricted so that operations in the lab setup do not disrupt the production

systems and networks. A policy enforcement at the connection between the

production systems and lab setup can ensure that only systems that comply to

the enterprise policy are allowed into the production network from a lab subnet.

Figure 3-14 shows a lab policy enforcement scenario.

Figure 3-14 Lab compliance

AAA

AAA

Production

Network

AAA

Lab

Networks

LAB Compliance

Posture Enforcement

Points

Router

Switch

Access Point

AAA

AAA

Server