Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

Network Access Control

Infoblox

Check Point and Infoblox

IT professionals are challenged to manage threats to network security caused by viruses, spyware, worms, and other malware. Infected or vulnerable machines should be automatically isolated from the network until the infection is removed or the vulnerability remediated. While several proprietary (vendor specific) initiatives address this problem, only one standard exists that is widely supported by heterogeneous networking devices: 802.1X/EAP.

InfoBlox and Check Point have tested and certified interoperability of a joint solution to automatically isolate infected endpoints prior to granting network access. The joint solution is based on Infoblox RADIUS-1 and the Check Point Endpoint Security. By leveraging RADIUS communication with 802.1X-capable networking devices, the solution quarantines non-compliant endpoints in a "remediation" VLAN, while compliant endpoints are granted full network access rights.

Benefits

  • Automated quarantine of infected endpoints
  • Automatic enforcement of corporate security standards
  • Standards-based approach (802.1X/EAP), enabling deployment across a heterogeneous network

InfoBlox RADIUS-1
As networks continue to grow, managing who gets on the network is becoming increasingly critical and complex for network administrators. RADIUS, a network service essential in authenticating and authorizing users on the network, has been cumbersome to deploy. Traditional solutions have introduced significant security risks, reliability issues, and management overhead into the network.

RADIUSone appliances are designed to provide the foundation for next-generation network identity services in a secure and easy-to-manage implementation. The hardened appliance design and intuitive graphical user interface (GUI) simplify the application and administration of network AAA services. RADIUSone works with existing enterprise network-access equipment from a variety of vendors out of the box, and it easily scales and adapts to meet future network requirements.

Features

  • Hardened appliance design for secure RADIUS delivery
  • User administration via intuitive web GUIQuick installation and intuitive
  • Secure management
  • Interoperable with a wide variety of vendors' equipment through pre-loaded dictionaries
  • On-board help and diagnostics

Check Point Endpoint Security
Check Point Endpoint Security unifies the highest-rated firewall, antivirus, antispyware, network access control (NAC), and remote access VPN in a single, centrally managed client. Unification of these five essential endpoint security components protects organizations from the broadest range of endpoint threats, including confidential data theft, viruses, and host-based intrusions. Check Point Endpoint Security is the only solution that integrates both NAC for endpoint compliance and a remote access VPN client for secure remote access communications. The essential integration of the highest-rated defenses in a single, centrally managed client eliminates the need to deploy and manage multiple endpoint security applications. This increases the range of protection and reduces the overall total cost of ownership by reducing overhead and providing operational efficiencies like no other endpoint solution.

Benefits

  • Defeats malware to protect against new and old viruses targeting confidential enterprise data
  • Stops unsafe endpoints from infecting enterprise networks
  • Ensures the confidentiality of remote access communications
  • Enables simpler deployment of essential endpoint defenses and remote access capabilities
  • Reduces total cost of ownership and complexity of managing multiple endpoint defenses

ArrowMore on Infoblox