摘要
随着公司计算机接入数量的迅速增长,终端安全管理的难度和重要性不断提高。为了统一管理、提高运维效率,2009年国家电网公司统推了北信源桌面终端标准化管理系统(简称桌面系统)。由于桌面系统的接入控制功能较弱,致使桌面系统客户端安装率不高,影响了安全策略的实施。文章从公司终端安全管理需求入手,调研主流的准入控制技术,结合企业网络现状,进行技术选型,制定组网方案,逐步部署实施终端计算机准入系统,实现了终端的身份认证、安全状态检查、不合规自动隔离修复。准入系统与桌面系统的成功结合,有效促进了内网的合规建设,提高了桌面系统使用效率,确保了各项信息指标的先进性。
With the rapid growth of the computer access number, difficulty and importance of terminal security management continue to increase. In 2009, The State Grid popularized The VRV Desktop Terminal Standardized Management System(hereinafter referred to Desktop System), in order to unify management, improve tile efficiency of operation and maintenance. Desktop system control function is weak, which resulted in a low rate of desktop client installation and affecting the implementation of the security policy. In this paper, it starts from the terminal security management needs, with mainstream of the admission domination research, network status , type of technology and network solutions. Finally, the end user admission domination system achieves success. And the function about authentication, security check, and non-compliance automatical isolation repair came true. The admission system and desktop system joint successfully, which promoted the internal network construction effectively, improved the use of desktop system efficiently, and ensured all the information indicators in the forefront.
出处
《电力信息与通信技术》
2013年第8期109-113,共5页
Electric Power Information and Communication Technology
关键词
终端准入控制
dot1x
安全
end user admission domination(EAD)
dotl x
security
