Network Access Control (NAC)

With the volume and impact of security threats growing at UCSF and around the world, we have steadily improved UCSF’s security posture over the last few years. After a 2017 security assessment showed that we still had some way to go, Chancellor Hawgood instructed us to “move purposefully” on a suite of security initiatives, including the deployment of Network Access Control (NAC).

NAC performs a compliance check on computers before they connect to the UCSF network. This gives us visibility into devices on our network and helps us contain compromised or dangerous devices. All computers, including personal computers and servers, require NAC per UCSF 650-16 Addendum B - UCSF Minimum Security Standards. UCSF IT provides the IT Security Suite of software to ensure compliance with Minimum Security Standards. For more information on the tools we use to help keep you safe, see UCSF IT Security Suite and Know Your Role in Protecting UCSF Data.

How to request access

A NAC Client is required to access the UCSF and BCH Oakland networks (e.g., VPN, WiFi, and wired). On screen, installation instructions will be provided when a computer device is connected to the UCSF and BCH Oakland networks.