Partners has embarked on a strategy to improve the computing experience across the breadth of devices used at work to assure productive, clean and stable computers (Windows PCs, Apple Macs, smartphones and tablets). With the recent virus and ransomware attacks, both within our System and Internationally, Partners is accelerating this effort to improve the security of our environment.
A change will be made to Mac desktops and laptops to help secure our environment. On Tuesday, July 18, 2017, the ForeScout SecureConnector Network Access Control (NAC) agent will be installed on all devices enrolled in PEAS.
Network Access Control (NAC) is a mechanism that ensures device trust before allowing device access to a secure network. A NAC agent is an application installed on a device to allow visibility into policy compliance of that device when connecting to the Partners network. The current agent used at Partners is called ForeScout SecureConnector.
What can I do to prepare?
You can check to see if you have the agent installed on your computer by opening your Applications folder and searching for ForeScout SecureConnector. If you do not find ForeScout SecureConnector in your list, you may visit this website to install: https://rc.partners.org/SecureConnector. Since you are enrolled in PEAS, you can simply open Self Service and install ForeScout SecureConnector.
What devices already have the SecureConnector Network Access Control (NAC) agent?
ForeScout SecureConnector is already installed on most Partners standard Windows workstations and some PEAS-enrolled Macs. Mobile devices, such as phones or tablets, and Linux computers are exempt at this time.
Since November 10, 2016, those working at or attending meetings at Assembly Row are required to install the ForeScout SecureConnector agent on any computer connecting to the Partners network. All devices must meet the security requirements to gain full network access. Other hospital site locations will implement this compliance check at a later date. The requirements include encryption, antivirus software, and patches.
Please visit the Knowledge Base for FAQ and additional information on device compliance, or our webpage on how to Secure Your Mac. If you have additional questions, please contact the IS Service Desk.