Lockdown Commander™
Enterpises need to manage a network access control (NAC) solutions across multiple locations, large and small. In large enterprises, this may require a number of network access control appliances. IT administrators need a way to centrally manage and deploy network access control policy, maintain the system, and consolidate reports. Further, it’s desirable for data about users and devices to propagate throughout the network to improve the accuracy of the system, and to enhance the end–user experience.
Lockdown Commander™ is an appliance–based solution that provides centralized policy control, device and user data propagation, consolidated reporting, appliance update automation, and general management.
Overview
How do you ensure your network access control policy is consistent across the enterprise, or that all network access control (NAC) appliances are using the same software and update versions? How can you ensure a user has the same experience whether they connect from headquarters, the remote office, or when switching from the LAN to the WLAN? How can IT consolidate data to effectively manage the network access control system, or support compliance initiatives?
Enterprises deploying network access control need to solve all these problems, or the system will suffer from fundamental limitations.
The Lockdown Commander™ provides a central point of interface for policy creation and deployment. Lockdown Commander aggregates and stores information about policy, users and devices from all Lockdown network access control devices including Lockdown Enforcer™ and Lockdown Sentry™.
Lockdown Commander facilitates user roaming and a consistent access experience by updating user information across Lockdown Enforcers and by uniformly applying policy across the enterprise.
Customers choose Lockdown Commander for many reasons including:
- The ability to create and deploy policies across all network access control appliances.
- A single management console to maintain and update all other Lockdown appliances.
- Data aggregation and consolidated reporting.
- Propagation of user and device across multiple Lockdown Enforcer appliances to smooth roaming.
How It Works
Lockdown Commander™ can be deployed anywhere on the network, but must have access to at least one Lockdown Enforcer. When deployed, administrators assoicate Commander with Lockdown Enforcers using Commander's web–based GUI.
After the association is complete, information about control points, ports, devices, and users will be continually transmitted from the associated Lockdown Enforcer appliance to the Lockdown Commander.
From this point forward, whenever policy is modified on a Lockdown Commander it will automatically be installed on all associated Lockdown Enforcers™. And when a user connects to the network, data on the user and device is uploaded to the Lockdown Commander. If a Lockdown Enforcer doesn’t recognize a user or device, it queries Lockdown Commander to obtain any available information. In this way, roaming users can move throughout the network and be subject to the consistent policies wherever they are, with fast, seamless access.
Lockdown Commander can be used as a central repository for software updates and signatures or LOCsets. When configured to download updates from Lockdown Networks LOCserver, Lockdown Commander can immediately push updates to all associated Lockdown Enforcers.
Features
Centralized Policy Management
Achieve policy consistency across the enterprise by creating, managing, and deploying network access control policy from a single point. Eliminate duplicate policies, unauthorized changes and misconfiguration.
Centralized Network Access Control Management
Scale the size of your network access control deployment as needed and ease administration by controlling software updates, management of policy, data aggregation, and all reporting from a single location.
Centralized Reporting
Aggregate data across your enterprise to gain a complete view of network access control and device health.
Centralized Data Repository
Network access control data such as system configurations, network access and device health or compliance information housed in a central data repository means less administration and higher security.
High Availability Operation
Continuous operation means no loss of network access control data, constant distribution of software and LOCset updates, on–demand network access control reporting, easy access to policy and seamless end–user roaming.