Hi there, we are an organisation with alot of users having laptops. my biggest worry is that not all the laptops are provided with the latest patches and virus updates. some users are not in the office for days so it is not posible to update there laptops. some users say the have updated there laptops but where to lazy to do it. Is there a way, when users try to connect to our network through VPN but are not up to date, the just simply got rejected? or they get some sort of weblink where they can get all the updates and patches? hope someone can help me ... with kind regards, Ardjuna

Using a corpotate antivirus solution installed on your server may be the way to go. Products like Norton corporate antivirus will force them to update silently when the tunnel is established. However, it will not force them to install windows patches nor it prevent trojans and p2p tools like kazaa. firewall rules applied on the tunnel's trafic may help.

yes indeed, i forgot to tell that we had McAfee, who will push the virus updates. I heard on a seminar that there was a way, when users who want's to try to connect to the network, but are not up-to-date, they simply got rejected and get some sort of weblink back where they can get the updates/patches. For example: our network is patched with MS0326/039 some user dials in and hasn't been patched and is infected with the nachi virus, it generates lots of network traffic on our network. The same for costumers who come to our office for 2 days and want to plug in there laptop to our network. even though he said the laptop was uptodate, but after a manual scan hey wasn't up to date at all. that's what i like to prevent, if that is posible... :-)