It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda Network Access Client

This Firmware Version Is End-Of-Support

Documentation for this product is no longer updated. Please see End-of-Support for CloudGen Firewall Firmware for further information on our EoS policy.

How to Install the Barracuda NAC Light

  • Last updated on

Installed in NAC Light mode, the Barracuda VPN Client can enforce Windows Security Center settings on client machines running Windows 7, Windows 8, or Windows 10, so that only healthy clients are allowed to connect. The client security settings are validated via the Barracuda CloudGen Firewall VPN service without requiring the Barracuda Personal Firewall or the Barracuda Access Monitor to be installed on the client machines.

Before You Begin

On the CloudGen Firewall, create and configure a VPN service for client-to-site VPN connections . For instructions, see Client-to-Site VPN . You will select the Windows Security settings via the CloudGen Firewall VPN service. 

Step 1 . Install the Barracuda VPN Client on the Client Machines

Step 2. Select the Windows Security Settings to Enforce

In your client-to-site VPN template, select the Windows security settings to enforce on client machines.

  1. In Barracuda Firewall Admin, go to CONFIGURATION > Configuration Tree > Box > Virtual Servers > your virtual server > Assigned Services > your VPN service > Client to Site.
  2. From the Barracuda VPN CA tab, click the Templates tab.
  3. Click Lock.
  4. Double-click the template.
  5. In the Enforce Windows Security Settings section of the Barracuda Templates window, select the security settings that you want to enforce:
    • Network Firewall
    • Windows Update
    • User Account Control
    • Virus Protection
    • Spyware Protection 
    • Internet Security Settings
      nac_light01.png
  6. Click OK.
  7. Click Send Changes and Activate.

The next time that the Barracuda VPN Client connects to your server, it will query the client machine's Windows Action Center settings while initiating the connection. The connection will only be established if these settings meet the Windows Security settings that you configured in the VPN service.

nac_light02.png

The Windows Security option "Windows Update" will only check if Windows updates are configured to be installed automatically on the client machine. It does not consider any information regarding the installation status of certain updates or the overall update status of the system. As the Windows Update configuration option "Never check for updates" is no longer available on Windows 10, enforcing the "Windows Update" option will not have any effect on client machines running Windows 10.