Enterasys SNS-TAG-HPA Manuel d'utilisateur télécharger pdf

Network Access Control (NAC)

Identity-based NAC with IPS and SIEM Integration

Product Overview

Enterasys Network Access Control (NAC) is a complete standards-based, multi-vendor

interoperable pre-connect and post-connect Network Access Control solution for wired and

wireless LAN and VPN users. Using Enterasys NAC Inline Controller, NAC Out-of-Band Gateway

appliances and/or NAC Out-of-Band Gateway Virtual Appliance with NMS NAC Manager

conﬁguration and reporting software, IT administrators can deploy a leading-edge NAC solution

to ensure only the right users have access to the right information from the right place at the

right time. Enterasys NAC is tightly integrated with the Enterasys Intrusion Prevention System

(IPS) and Enterasys Security Information and Event Manager (SIEM) and Enterasys Network

Management Suite (NMS) Automated Security Manager to deliver best-in-class post-connect

access control.

The Enterasys NAC advantage is business-oriented visibility and control over individual users and

applications in multi-vendor infrastructures. NAC protects existing infrastructure investments

since it does not require the deployment of new switching hardware or that agents be installed on

all end systems. Enterasys NAC performs multi-user, multi-method authentication, vulnerability

assessment and assisted remediation. It offers the ﬂexibility to choose whether or not to restrict

access for guests/contractors to public Internet services only—and how to handle authenticated

internal users/devices that do not pass the security posture assessment. Businesses have the

ﬂexibility to balance user productivity and security. The NAC assessment warning capability

alerts users that they need to upgrade their system but can allow a grace period before they

are quarantined.

Enterasys NAC policies permit, deny, prioritize, rate-limit, tag, re-direct, and audit network

trafﬁc based on user identity, time and location, device type, and other environmental variables.

Enterasys NAC supports RFC 3580 port and VLAN-based quarantine for Enterasys and third-

party switches, plus more powerful isolation policies (which prevent compromised endpoints from

Beneﬁts

Business Alignment

• Protectcorporatedatabyproactively

preventingunauthorizedusers,

compromisedendpoints,andother

vulnerablesystemsfromnetworkaccess

• Effectivelybalancesecurityandavailability

forusers,contractorsandguests

• Proactivelycontrolthesecuritypostureof

alldevicesonthenetwork

• Efcientlyaddressregulatorycompliance

requirements

• Cost-efcientprotectionforenterprise

remoteofces

Operational Efﬁciency

• Leverageexistingassessmentservers,

authenticationservers,softwareagents

andidentitysourcesavoidingforklift

upgrades

• Enablebusinessstafftoeasilysponsor

guestsandvalidateguestregistration

•Protectphysicalandvirtualized

environmentswithexibledeployment

optionsincludingappliancesandvirtual

appliances

Security

• Enablethestrongestsecuritywithne

grainedaccesscontrolbasedonuser,

device,time,locationand

authenticationtype

• Assessendsystemsofanytypefor

vulnerabilitiesorthreatswithagent-based

oragent-lessassessmentincludingthird

partytools

• Automateendpointisolation,quarantine

andremediation,plusongoingthreat

analysis,prevention,andcontainment

Service and Support

• Industry-leadingrstcallresolutionrates

andcustomersatisfactionrates

• Personalizedservices,includingsitesurveys,

networkdesign,installationandtraining

Completesolutionfeaturingin-

line,out-of-bandappliancesand

virtualout-of-bandappliance

Open,standards-based

architectureandopenAPIs

Comprehensivedashboard

reportingandadvanced

noticationengine

Managedguestaccesscontrol

withsponsorship

Uniedpolicymanagement

inheterogeneouswiredand

wirelessenvironments

There is nothing more important

than our customers.

DATASHEET

1 2 3 4 5 6

Résumé du contenu

Page 1 - Network Access Control (NAC)

Network Access Control (NAC)Identity-based NAC with IPS and SIEM IntegrationProduct OverviewEnterasys Network Access Control (NAC) is a complete stand

Page 2 - NMS NAC Manager

Page 2launching attacks while in the quarantine state) on Enterasys switches. Enterasys NAC is adaptable to any device using RADIUS for authorization

Page 3 - Additional Features

Page 3binds together the User, Hostname, IP address, MAC and location (switch and port or wireless AP and SSID) along with timestamps for each endpoin

Page 4 - Specications

Page 4Enterasys NAC Inline ControllerPhysical Speciﬁcations Form Factor: 19” rack mount; Height: 3.47” (8.81 cm); Width: 17.62” (44.46 cm); Depth: 20

Page 5 - OrderingInformation

Page 5NAC Assessment Agent OS RequirementsSupported operating systems for end systems connecting to the network through an Enterasys NAC deployment th

Page 6 - ContactUs

ContactUsDelivering on our promises. On-time. On-budget.Formoreinformation,callEnterasysNetworkstollfreeat1-877-801-7082, or+1-978-684-100