Enterasys Advances Network Access Control Capabilities
Enterasys® Network Access Control seamlessly integrates into any network from any vendor, and provides Network Access Control for wired and wireless LAN and VPN users. Enterasys NAC version 3.1, advances the third generation NAC offering with new management software, in-line and out-of-band appliances, and embedded switch modules that enable enterprises to ensure only the right users have access to the right information from the right place at the right time.
Enterasys NAC v3.1 Features:
Automated Guest Registration - Eases the burden on the HelpDesk operations staff while assuring secure guest networking.
Proactive Visibility and Control - Proactive pre-connect and post-connect visibility and continuous policy-based control of users, applications and networked devices provides simplicity in deployment, scalability in operation, effectiveness in risk mitigation, and ease of management.
Holistic Network Management - The latest Enterasys NetSight® NAC Manager configuration and reporting software offers centralized visibility and control with distributed policy enforcement to manage the networked infrastructure holistically rather than box-by-box.
Intuitive Reporting & Auditing - NetSight NAC Manager aggregates network connectivity and vulnerability statistics, and audits network access activities.
IP-to-ID Mapping - Delivers a real-time view of who and what is connected where on the network by binding together the Username, IP Address, MAC address and physical port of each endpoint — a key requirement for auditing and forensics.
Distributed Intrusion Prevention - IP-to-ID Mapping leverages Kerberos snooping techniques and is used by NetSight Automated Security Manager to implement location-independent dynamic intrusion response; and by Dragon Security Command Console to pinpoint within seconds a threat source location for containment.
The Enterasys NAC advantage is business-oriented granular visibility and control over individual users and applications. Enterasys NAC policies permit, deny, prioritize, rate-limit, tag, re-direct and audit network traffic based on user identity, time and location, device type and other environmental variables. The new Enterasys NAC offerings are tightly integrated with Enterasys Dragon® advanced security applications for intrusion detection/prevention, network behavioral analysis and security information management to deliver best-in-class post-connect access control.
Enterasys avoids disrupting or reconfiguring your current network infrastructure when implementing NAC. Existing investments are protected since no new switching or routing hardware needs to be deployed, and no agent needs to be installed on all of your computers. Enterasys’ goal is simply to make NAC cost-effective, practical and achievable. Phased deployment options enable organizations to start with simple end point detection and location directory information, add authentication/authorization and/or assessment, then automate remediation.
Enterasys NAC integrates with multiple vulnerability assessment servers from Check Point, Microsoft, Symantec and Tenable. Enterasys will also be offering our own end point assessment technology. Interoperability has been proven with Microsoft NAP and the Trusted Computing Group’s TNC. Enterasys NAC scalability has been proven at Bethel University (11,000 users), European Investment Bank (3,000 users), UNC Chapel Hill (35,000 users), and University of Bern (30,000 users).
The new Enterasys NAC Controller, Enterasys NAC Gateway and Enterasys NAC Manager will be generally available within 90 days from authorized Enterasys distributors and value-added resellers worldwide. To learn more about Enterasys Secure Networks capabilities, please schedule a live demonstration at www.enterasys.com/demo.