I am facing challenges towards the vulnerability assessment. Most of the laptops which were not present in SNX since last few months are getting connected without any intimation to IT guys.They get the IP address as becos we have Radius implemented network. The only way i come to know thru vulnerability scanner.
Can any one suggest the solution in such way the machine which is vulnerable should not get connected to network until the system is patched. We have windows 2003 & 2008 AD infrastructure and Cicso devices for networks.
Kindly suggest any suitable solutions.