Home  |   Contact Us  |   Customer Login  |   Partner Login  |    |    |  

 
Solutions
Products
Customers
Services & Tools
Support & Training
Partners
News & Events
Company
Library
   Language   
Solutions Overview
802.1X/Wireless Authentication
Disaster Recovery (DR)
DNS Firewall
DNS/DHCP Infrastructure
IP Address Management (IPAM)
Network Access Control (NAC)
IF-MAP Standard
PortIQ™ Appliance
Reporting for Core Network Services
Enhanced VitalQIP
vNIOS™ software on Cisco
vNIOS™ software on Riverbed
Voice Over IP (VoIP)

Control Network Access Now and
Build a Solid NAC Foundation
THE NAC FOUNDATION MODULE FROM INFOBLOX PROVIDES CLIENT SEGMENATION INTO QUARANTINED, GUEST, AND AUTHORIZED USERS AND IS A ROBUST FOUNDATION FOR YOUR NETWORK ACCESS CONTROL (NAC) DEPLOYMENT
Nearly every IP network relies on DHCP services to provide IP addresses to devices. Intelligent control over IP address assignment is, therefore, a critical part of any strategy for limiting network access to known users and compliant end devices.

The Infoblox NAC Foundation module, included with Infoblox NIOS™ software, works with the DHCP server on Infoblox appliances to provide basic NAC functions in conjunction with your existing authentication and network infrastructure. The NAC Foundation module also works with McAfee ePolicy Orchestrator, the industry-leading endpoint assessment technology from McAfee. It can make an immediate improvement in network security and compliance and is a lasting investment that provides critical services required by any NAC implementation.

The Infoblox NAC Foundation module enables user identity (and, optionally, endpoint state information) to direct the operation of DHCP services and supports a number of applications, including:

  • Captive portal: All unauthenticated users are directed to an integrated captive web portal that can be customized with company logos, acceptable use policies, help desk contact information, etc. No external web server or additional hardware is required.
  • Guest access: Restricts access by unknown devices and users in guest areas and conference rooms to a “guest” or quarantined portion of the network without requiring any additional network infrastructure or third-party systems.
  • Authenticated DHCP: Provides IP addresses on the production network only to devices whose users have been registered in the Infoblox appliance database following user authentication against RADIUS, Active Directory, or LDAP.
  • Endpoint policy assessment and remediation: Integrates with the McAfee ePolicy Orchestrator to scan end devices in quarantine, compare their status with security policies, and bring them into compliance before issuing a production IP address.
  • Local survivability: By using either the local accounts or accounts replicated from an AD system using the Infoblox Grid Connector for Microsoft AD, companies can provide a distributed system that will continue to function and authenticate users even in the event of a WAN outage.

The NAC Foundation module is compatible with any network infrastructure and supports both managed and unmanaged endpoints. It supports enforcement of network quarantine and access restrictions via multiple DHCP ranges per subnet and ACLs in network routers and switches. Because it integrates with enterprise directories and with the Infoblox DHCP server, the Infoblox NAC Foundation module provides the unique ability for the Infoblox appliances to assemble and maintain real-time and historical data that correlate user identity, device, and IP address information.

To learn more about the NAC Foundation module, contact us at info@infoblox.com or call +1.408.625.4200.

 
 
© 2009 Infoblox Inc. All rights reserved. All registered trademarks are property of their respective owners. Privacy policy. Site Map.