Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

OPSEC Partners

A10 Networks

Product Version Certified: IDSentrie 1000
Certified for use with: NGX with Application Intelligence

Product Description: IDSentrie 1000 is an affordable and practical identity & access management (IAM) solution for businesses with between 100-5000 employees. It has features in four main areas: RADIUS authentication, central account management, identity-based correlation, and user self-help for passwords. IDSentrie features an Open Standard API for 3rd party integration.
 
Key Features and Benefits
OPSEC Integration		 Clear A10 Networks
 
Company Description: A10 Networks was founded in 2004 with a mission to create a new class of affordable, identity-aware network solutions, including the industry's first "Smart" identity management system. A10's solutions help businesses and government increase efficiency, address regulatory compliance and security risks while reducing the complexity and costs of managing global networks.

A10's products unify critical identity and access management functions with networking and security to offer network administrators centralized management and unparalleled visibility into network activity. A10 is a well-financed, privately held company headquartered in San Jose, California, with offices in Beijing. For more information, visit A10's website
 
Key Features and Benefits

The IDSentrie 1000 is a multi-function identity & access management device with features in four major areas: 1) RADIUS authentication - with support for Authentication Proxy 2) Central Account Management - for provisioning of user accounts across dissimilar data stores 3) Identity-Based Correlation - which provides user identity information for security syslog events from firewall devices 4) User Self-Help - which provides a web-based kiosk to allow end users to repair their own password and account issues without IT assistance. It features an Open Standard XML API for 3rd party integration.

IDSentrie's Authentication Proxy Service allows RADIUS authentication requests to be passed onto a wide range of popular data stores (such as LDAP, Active Directory, eDirectory, iPlanet, Linux, NIS and others) to consolidate authentication, policy control, logging and reporting functions for better visibility into network access.

The IDSentrie appliance uses a thin XML API to allow it to interoperate with industry-standard security solutions, allowing for rapid correlation of security alerts with user identity information. IDSentrie essentially allows network managers to make identity information part of their alert and syslog reporting, so enforcement of corporate security policies and computer usage policies is easier. Without identity information, forensics today often require manual "back-tracking" of MAC address to IP address to hostname and then to user identity. This can add time and effort to network management processes where speed is critical, especially as data sets grow and compliance and strict internal controls are enforced.

The IDSentrie device supports most commonly used authentication protocols, 802.1X, EAP protocols, PKI certificates, and hardware tokens. Further, the integrated RADIUS authentication server makes the system versatile enough to support "greenfield" wireless deployments and network environments that are transitioning legacy data stores to be compliant with new & advanced protocols.

IDSentrie also provides a full DHCP server with scoping and superscoping capabilities.
 
OPSEC Integration
An OPSEC certified partner, A10 uses Check Point's LEA in its IDSentrie Identity & Access Management appliance for unified integration of Check Point Security Log Information with identity-based provisioning and reporting.