Search This Blog

Thursday, September 20, 2007

Upgrades give Enterasys a more fully featured NAC portfolio

Network World

Security: Network Access Control




Network World's Security: Network Access Control Newsletter, 09/20/07

Upgrades give Enterasys a more fully featured NAC portfolio

By Tim Greene

Enterasys is upgrading its NetSight management suite and it includes upgrades for its NAC system.

First the company’s NAC Manager software now supports MAC address registration tied to user identity as a criterion for applying policy. So a device logging in to the network would be diverted to a Web portal where the user would be queried for information that would be paired with the MAC address of the machine.

A guest might be granted Internet access if the MAC address is unknown or the user ID is unknown. But the device might also be allowed onto a restricted VLAN if a trusted sponsor enters a valid user name and password.

Straight Talk from Security Experts

Leading security experts share their advice, secrets and real-world experiences in Network World's latest Executive Guide, "The Security Treadmill." Learn how to get inside users' heads, fight for a bigger security budget and much more.

Click here to download this Executive Guide.

This option is primarily for guests, contractors and others who use computers not issued by the corporation. It allows known, validated employees to vouch for visitors.

Enterasys is introducing Assisted Remediation Server that automatically refers machines that fail NAC pre-admission scans to a server where the can patch up whatever shortcomings the scans reveal. The device is sent to a Web portal that displays what steps the user should take to remediate the problem that is keeping them from being authenticated. Before, Enterasys did not have a remediation mechanism.

Enterasys supports post-admission NAC by blending features of its new Automated Security Manager with its NAC Manager platform. When Automated Security Manager is notified by intrusion detection systems of behavior that violates policies it passes details of the violation along to NAC Manager. In turn, NAC Manager enforces policies to address the unauthorized behavior. The device can be quarantined until the unauthorized behavior is shut down.

So for example, if a workstation starts serving FTP files, it could be quarantined and the user notified they need to shut down the FTP server in order to be readmitted to the network.

The upgrades represent a more fully featured NAC portfolio for Enterasys that warrant a look.


  What do you think?
Post a comment on this newsletter

TODAY'S MOST-READ STORIES:

1. IBM targets Office with free productivity apps
2. Sprint launches home cells to boost signals
3. One less reason to adopt IPv6?
4. The Hell of Gateway's tech support
5. Cisco to buy wireless-management firm Cognio
6. Researchers flash personal aircraft, future jetpack
7. DST issues resurface for IT
8. A Nortel-3Com-Polycom combo vs. Cisco
9. Does 802.11n spell the end of Ethernet?
10. 10 IT management software companies to watch

MOST-READ REVIEW:
VM management tools tested


Contact the author:

Tim Greene is a senior editor at Network World, covering network access control, virtual private networking gear, remote access, WAN acceleration and aspects of VoIP technology. You can reach him at tgreene@nww.com.



ARCHIVE

Archive of the Security: Network Access Control Newsletter.


BONUS FEATURE

IT PRODUCT RESEARCH AT YOUR FINGERTIPS

Get detailed information on thousands of products, conduct side-by-side comparisons and read product test and review results with Network World’s IT Buyer’s Guides. Find the best solution faster than ever with over 100 distinct categories across the security, storage, management, wireless, infrastructure and convergence markets. Click here for details.


PRINT SUBSCRIPTIONS AVAILABLE
You've got the technology snapshot of your choice delivered to your inbox each day. Extend your knowledge with a print subscription to the Network World newsweekly, Apply here today.

International subscribers, click here.


SUBSCRIPTION SERVICES

To subscribe or unsubscribe to any Network World newsletter, change your e-mail address or contact us, click here.

This message was sent to: security.world@gmail.com. Please use this address when modifying your subscription.


Advertising information: Write to Associate Publisher Online Susan Cardoza

Network World, Inc., 118 Turnpike Road, Southborough, MA 01772

Copyright Network World, Inc., 2007

No comments: