PluginsΒΆ
One really interesting component in openNAC are the plugins, these plugins can run many different capabilities about network access control:
- Plugins related with asset discovery process.
- Plugins related with network orchestrations (NGFW, MDM).
- Plugins related with asset profiling.
- Plugins related with two factor authentication (2FA).
- Plugins related with asset registration, categorization and its control.
Going to Configuration -> Configuration vars -> Plugins at the TAB plugins is possible to set the default configuration parameters for Plugins, these are default values but remember that ON NAC -> Policies in each policy is possible to defined specific parameters.
To see the plugin at the policy engine is required to enable it in the configuration vars first.
There are synchronous and asynchronous plugins
Synchronous: These plugins will be execute with authentication process and modify the results of policy evaluation. The synchronous plugins have been name with Sync ending.
Asynchronous: These plugins will be execute with independence of authentication process to get more information about assets, and the result of plugin execution will not modify the policy evaluation.