TELUS Network Access Management - Service Terms

TELUS Network Access Management, referred to in these Service Terms as the “NAM Ser-vice”, provides centralized management, enhanced visibility and the ability to apply granular policy based access. The NAM Service is built with Cisco Identity Service Engine (ISE) at the core. Cisco's ISE platform is a leading, identity-based network access control and policy-enforcement system. It is a common policy engine for controlling end-point access and network device administration for enterprises. NAM Service will allow an administrator to centrally control access policies for wired, wireless, and VPN endpoints in the network. This service allows enterprises to gather real-time contextual information from network devices (NADs), users and devices (Endpoints). The administrator can then use that information to make proactive governance decisions and enforce policies by tying identity to various network elements including access switches, wireless LAN controllers (WLCs), virtual private network (VPN) gateways, and data center switches.

The following tables describe the elements of the NAM Service that we are responsible for and what you are responsible for. “Security Appliance”, when used in these Service Terms refers to Cisco ISE SNS34x5, SNS35x5, SNS36x5 which could be a Physical Hardware or Virtual Machine based deployment.

There are 3 major components to the NAM Service which are chargeable;

(i) Security Appliance Cost,

(ii) One Time Charge for Installation and Additional Consulting Charges if applicable. A one-time charge for installation will be applied. In the event of additional consulting services required, an additional one-time charge will also be applied.

(iii) Monthly Recurring Charges. A monthly recurring rate charge applies for each Network Access Management service based on your specific service requirements and Service Period.

All such charges are set out on the attached Service Charges form and associated rate sheet for your specific options and associated pricing. We will start the billing cycle for each service location 30 days after the Network Access Management service has been activated in that service location.

Significant infrastructure upgrades and complex change requests to the NAM Services subsequent to the initial installation required as a result of significant upgrades or changes to your LAN, including new or upgraded servers, hubs, switches, routers, workstations, printers, or firewalls, will be billed on a “T&M” basis and may result in changes to the charges that are set out in the Service Charges table located at the end of these terms.

Other examples of complex change requests which may result in extra charges include (non-exhaustive list):

Creation of a new policy Addition of new endpoint devices that require a new user profile to be created (e.g. new Security Appliance type or OS type) Addition of new network devices that require a new profile to be created Addition of VLANS Mobile Device Management (MDM) Integration Configuration of Device Posture Services Onboarding services (e.g. Certificate Services) Guest access on Wired deployments COA (Change of Authorization) Configuration Cancellation of the Services

When Network Access Management is cancelled, you are required to pay a cancellation charge which compensates TELUS for the costs associated with such cancellation. TELUS calculates the service cancellation charge using the table below, based on the service period you selected. The service cancellation charge is a percentage of the total fixed monthly charges remaining in the service period after cancellation:

This table sets out the Service Level Agreement and credit calculation for the NAM Service. These Service Level Agreement numbers are calculated on a per-month and per-site basis. Service Level Agreement results are available to you on your request on monthly basis. Service credits can be claimed by contacting us and any outstanding credits for a month can be claimed for 31-days after the month’s results are made available to you.

We will make commercially reasonable efforts to meet the Service Level Agreements de-scribed below, but any failure to meet a Service Level Agreement is not a breach or default of this Agreement and the award of Service Level Credits is your sole remedy for any such failure. All averages are measured over a calendar month.

Applies to Service availability only (not connectivity between Security Appliance, Active Directory, Radius Servers and other LAN components or connectivity to Internet).

Excusable Downtime include any portion of the Security Appliance outage that is caused by one of the following causes

Acts or omissions by you or a your vendor (other than TELUS pursuant to this Agreement) that adversely affect TELUS’ ability to meet the Service Level Agreement TELUS cannot access your site where required to carry out TELUS’ responsibilities; Your designated contact or your managed third party (excluding TELUS) either (1) is not available to receive or install equipment, (2) does not complete remedial work or such work impacts Service Levels, or (3) fails to provide TELUS with accurate and timely information that may be required to enable TELUS to carry out its responsibilities; Your supplied hardware and software is not kept at version levels that are certified and supported by the applicable vendor. Hardware, software or facilities that are not TELUS’ responsibility adversely affects TELUS’ ability to meet the Service Level Agreement. An event of force majeure adversely affects TELUS’ ability to meet the Service Level Agreement. Scheduled Maintenance will take place between 3:00 A.M. – 5:00 AM EST/EDT on Thursdays and 1:00 A.M. – 4:00 A.M. EST/EDT on Sundays, although TELUS may change these time periods at any time with prior notice to you. These scheduled outage periods are excluded from availability calculations. TELUS reserves the right to execute emergency changes to ensure service availability without your prior approval.

Service Level Credits are calculated by taking the difference between the actual Service Availability of Security Appliance achieved and the applicable Service Level Agreement for the applicable Security Appliances. The Service Level Credit is a percentage (as specified in Table C below) of the fixed monthly charges for the applicable NAM Services (not including any variable or usage-based charges). Requests for Service Level Credits must be made by you within thirty one calendar days following the end of the month during which the outage has occurred. Requests must be made in writing to the address provided by TELUS to you during implementation of the Services detailed in the Solution Details.

The NAM Services do not include the installation, configuration and maintenance of anti-virus software, and without limiting anything else in this agreement, we make no warranties relating to, and are not responsible for, the detection or prevention of viruses or the effect of any viruses on the your hardware, software, LAN or facilities, even if the introduction of the viruses is related to the provision of the NAM Services.

The NAM service provide ITIL based change management process for all configuration changes included in the service.

The following table outlines the Network Access Management Change Management Service Level Objectives (SLOs). TELUS will make reasonable commercial efforts to achieve these SLOs but any failure to do so will not constitute a breach of this agreement, will not result in any Service Level Credits and will not permit you to claim any amount of harm or damage.

*Acknowledgement of change request within a calendar month does not exceed an average of 15 minutes. Scheduled Maintenance will take place between 3:00 A.M. – 5:00 AM EST/EDT on Thursdays and 1:00 A.M. – 4:00 A.M. EST/EDT on Sundays, alt-hough we may change these time periods at any time with prior notice to you. These scheduled outage periods are excluded from any availability calcula-tions. We reserve the right to execute emergency changes to ensure Service Availability without prior Customer approval.