Enhanced network access control (eNAC) framework

Assignee

• GM GLOBAL TECHNOLOGY OPERATIONS LLC · US

Inventors

• Anthony D. Bolton · Monasterevin, IE
• Stefan Callery · Dublin, IE
• James B. Currie · Chesterfield Township, US
• Spencer T. Searle · Shelby Charter Township, US
• Conor Foley · Sterling, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04W84/12
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A method for providing enhanced network access controls (eNAC) for a network includes utilizing a database having a plurality of MAB entries set to a default disabled state, connecting a non 802.1X capable device to the network using a MAC address as a unique identifier, utilizing a network switch to challenge the non 802.1X capable device, sending the MAC address of the device to a RADIUS client to authenticate against known records, processing a connection request from the non 802.1X capable device, upon validating the connection request, granting access to the non 802.1X capable device, utilizing a MAB rescue application to temporarily change the account status for the non 802.1X capable device to an enabled state, permitting endpoint authentication of the non 802.1X capable device while the account is enabled, and preventing rogue endpoints from accessing the network by disabling all MAB entries and new accounts on the network.