FullArmor offers Web-based endpoint policy enforcement and compliance

The CIO-level business angle on the latest tech

In his article, "6 Hot Technologies for 2006: Microsoft's Group Policy," John Fontana wrote, "Group policy is one of the rewards given to IT execs for their hard work in cracking the complex deployment of Active Directory." Microsoft's product Group Policy provides more than 1200 settings that allow an administrator to manage and customize servers and desktop computers from a central location.

The greatest benefit of Group Policy is that enterprises don’t need to purchase and maintain a separate policy management system for endpoint security and regulatory compliance. However, deploying and configuring Active Directory, which requires an instance of SQL Server, is no easy feat.

What if you want all the benefits of Group Policy, but you don't have or are unable to deploy Active Directory? Or, perhaps you do use Active Directory, but there are devices in the field that are rarely connected to your directory long enough to receive the necessary management updates. Now there is FullArmor PolicyPortal, which allows administrators to secure and configure all endpoints via the Internet, with or without Active Directory. PolicyPortal also monitors and provides easy-to-understand reports on whether policy standards are in force on individual machines.

To continue reading, register here and become an Insider. You'll get free access to premium content from CIO, Computerworld, CSO, InfoWorld, and Network World. See more Insider content or sign in.

In his article, "6 Hot Technologies for 2006: Microsoft's Group Policy," John Fontana wrote, "Group policy is one of the rewards given to IT execs for their hard work in cracking the complex deployment of Active Directory." Microsoft's product Group Policy provides more than 1200 settings that allow an administrator to manage and customize servers and desktop computers from a central location.

The greatest benefit of Group Policy is that enterprises don’t need to purchase and maintain a separate policy management system for endpoint security and regulatory compliance. However, deploying and configuring Active Directory, which requires an instance of SQL Server, is no easy feat.

What if you want all the benefits of Group Policy, but you don't have or are unable to deploy Active Directory? Or, perhaps you do use Active Directory, but there are devices in the field that are rarely connected to your directory long enough to receive the necessary management updates. Now there is FullArmor PolicyPortal, which allows administrators to secure and configure all endpoints via the Internet, with or without Active Directory. PolicyPortal also monitors and provides easy-to-understand reports on whether policy standards are in force on individual machines.

Roaming users present the biggest threat to a network, according to FullArmor CTO Danny Kim. "These users are often disconnected for long periods of time, and they miss getting vital security updates on their devices. You wouldn't want them connecting to your network if they don't comply with your corporate security and configuration standards," Kim says.

PolicyPortal leverages the Internet to deliver policies to all sorts of disconnected or remote devices, including kiosks, automated teller machines, laptops, and home PCs. PolicyPortal provides support for devices running Windows 2000 or higher operating systems. Support for Windows mobile, Palm OS, RIM devices, as well as Linux and UNIX based devices is reportedly in development.

In addition, PolicyPortal can secure and configure devices on networks that aren't running Active Directory, or for that matter, aren't even running the Windows 2000 server operating system or Windows Server 2003, including Novell NetWare environments.

Rick Neubauer, president of ITility, calls PolicyPortal "a one-of-a-kind product." ITility provides a range of IT services for small companies. "We are basically the IT department for our customers," Neubauer says. "We offer the capabilities of a large IT environment without the customer having to buy the hardware and software. We deliver 'proactive IT' for a small monthly fee." ITility remotely manages its customers' computers and prevents problems by doing regular maintenance.

ITility has been using PolicyPortal since its release several months ago, and it has been a great asset for the company. "Before we deployed PolicyPortal, we had to use script logic to remotely manage our customers' PCs and servers. It was expensive and complicated. PolicyPortal is way more cost effective and provides far more functionality." Neubauer estimates the cost of PolicyPortal to be one-third of his previous solution. "Now I can offer more services to my clients at a lower cost."

Linda Musthaler is a principal analyst with Essential Solutions Corporation.