The SANS Institute published the 20 Critical Security Controls (v3) The controls state that you should know everything about all the devices connected to your network and the entire catalogue of software resident on these devices. Security processes and tools need to be integrated with other activities around asset, change, and configuration management. 802.1X (or some other type of device authentication) should be part of the default configuration of physical and virtual devices. Virtual desktops and servers are easy to provision, deploy and change while physical device changes are now automated to keep up all this other activity.”]