Linda Musthaler's CIO-level look at the latest networking technologies and their benefits and pitfalls.
Network access control is one of those technology categories that has a lot of promise but not a lot of users, despite the fact that solutions have been available for years. There can be significant challenges to deploying an enterprise solution. For example, creating the policies that provide just the right level of security without being overly aggressive isn't easy. Also, it's difficult to find a solution that fits into a multi-vendor infrastructure, both on the network as well as the client side.
In 2006, a couple of veteran engineers from Cisco started a company to address those very issues that seemed to be holding customers back from deploying NAC. This was the birth of Avenda Systems and its multifunction platform for network access security. A design goal from the outset was to make sure Avenda's solution would work in any environment, regardless of network infrastructure, endpoint devices and identity stores.
Avenda's eTIPS appliance sits at the crossroads of traditional NAC and the identity management space. Traditional NAC typically focuses on remediating endpoint health problems before allowing a device to connect to the network. Identity management is a popular concept using identity-based policies to determine user access permissions. Avenda marries the identity information and the physical device information to provide a very granular set of access conditions.
Differentiated access based on role can be granted for employees, partners, contract or temporary workers, and guests to limit and control where on the network each group has access. Employees can be granted full network access privileges based on their job or group while guests may only be granted access to the Internet. Granular access privileges also can be granted based on type and health of endpoint, location, time of day and more. For example, an employee at a desktop may have access to more sensitive data than when connected to the network via a smartphone over a public VPN. Or in a hospital, a medical cart that gets plugged into the network can be given access only when it's on a specific floor or wing. To limit virus and malware attacks, endpoint integrity or health checks can be triggered to ensure that users are using required antivirus, antispyware and firewall applications.
Linda Musthaler is a principal analyst with Essential Solutions Corporation.
Rss FeedRss Feed
Diagnosing why an application is slow is hard, at times taking days or weeks to isolate and resolve. This paper explains the challenges involved using current management tools, provides a 'wish list' for application management and analysis, and explains the need for an application system-wide approach that monitors entire applications, not components.
This paper highlights the impact of virtualization on application performance. "Managing Application Performance in Virtual Environments" states: "Best-in-Class organizations are predominately taking actions around improving visibility across both physical and virtual systems, assessing the business impact of application performance and understanding interdependencies of applications in virtualized environments."
Forrester Research analyst Glenn O'Donnell and BlueStripe co-founder Vic Nyman discuss a breakthrough approach to application problem management. Learn the new approach for ITSM problem management, which provides: Rapid isolation of application slow-downs to specific components for quick problem resolution, 24/7 monitoring for proactive notification of potential issues before end users are impacted and much more.
The Leader in Network Knowledge
Partner Content
Blue Stripe Software
www.bluestripe.com/
Improving Application Performance Troubleshooting
Diagnosing why an application is slow is hard, at times taking days or weeks to isolate and resolve. This paper explains the challenges involved using current management tools, provides a 'wish list' for application management and analysis, and explains the need for an application system-wide approach that monitors entire applications, not components.
Download Whitepaper
Virtual Vigilance: Managing Application Performance in Virtual Environments
This paper highlights the impact of virtualization on application performance. "Managing Application Performance in Virtual Environments" states: "Best-in-Class organizations are predominately taking actions around improving visibility across both physical and virtual systems, assessing the business impact of application performance and understanding interdependencies of applications in virtualized environments."
Download Whitepaper
Application Service Requests: The Missing Link for Pragmatic ITSM
Forrester Research analyst Glenn O'Donnell and BlueStripe co-founder Vic Nyman discuss a breakthrough approach to application problem management. Learn the new approach for ITSM problem management, which provides: Rapid isolation of application slow-downs to specific components for quick problem resolution, 24/7 monitoring for proactive notification of potential issues before end users are impacted and much more.
Register for Webcast
Comments (2)
What networking equipment is Jeff using?By Anonymous on May 22, 2009, 10:31 amIs this guy just a Cisco user? Avenda says they're a Cisco partner so you'd expect it to work.
Reply | Read entire comment
East Grand Rapids Public Schools Network EquipmentBy Jeff Crawford on May 23, 2009, 9:03 pmAll of the below components use the Avenda eTIPS appliance for 802.1x, RADIUS, or TACACS AAA stuff. *My meta-directory is Novell eDirectory 8.8 (authentication...
Reply | Read entire comment
View all comments