Posture assessment determines whether a device meets your security policy. The NAC client or agent running on the endpoint collects health information and reports it to the NAC server.
Typical posture checks include:
- Is antivirus installed and up to date?
- Is the OS patched to a minimum level?
- Is disk encryption enabled?
- Is the host firewall active?
- Are required security agents running?
Agentless approaches scan devices from the network but see less detail. Agents provide deeper visibility but require deployment and maintenance.