Lockdown Sentry™
Cost–effective policy enforcement for remote locations.
Organizations struggle to secure devices in remote locations. These facilities possess fewer IT resources and devices are more difficult to keep up–to–date with the latest patches and anti–virus signatures. And when device health or unauthorized access problems occur in remote offices, they're harder to resolve.
Lockdown Sentry™ is the first appliance–based solution to deliver cost-effective network access control (NAC) for smaller, hard to secure, remote facilities.
Overview
How do you protect the entire network?
IT administrators often have limited visibility into remote locations, especially those without local IT staff. This can be a real compliance problem, as remote users are least likely to comply with security policies and most likely to be exposed to third party network (of unknown security). When remote devices are out of compliance or compromised, it can be very difficult and expensive to remediate compromised devices.
In many cases, remote locations also have relatively large numbers of guests or vendors needing access to network or internet resources. Lockdown Sentry™ enables you to support these users' access needs, while keeping them off your network.
Sticker shock?
Have you looked for a network access comtrol solution to address remote locations, only to find products that are clearly built for medium to large facilities, and are too expensive? Look no further. Lockdown Networks offers cost–effective network access control for the entire enterprise.
With Lockdown Sentry™ you can:
- Assess the health of a device, such as a laptop, PDA, or printer.
- Ensure users authenticate prior to accessing the production network.
- Provide unauthenticated guests with access to the Internet.
- Deploy the same guest and device registration capabilities you would use in core facilities.
- Make certain connecting devices conform to policy such as having a personal firewall turned on and active anti–virus software.
- Assign devices to network segments based on type, location, and health.
How It Works
Lockdown Sentry™ works in conjunction with Lockdown Enforcer™ Lockdown Sentry extends the capabilities of Lockdown Enforcer by creating an encrypted tunnel between the remote site and the Lockdown Enforcer located at the main site. This provides a "point–of–presense" for Lockdown Enforcer on the remote network.
At the remote location, Lockdown Sentry connects to a managed switch on a port that is tagged for all VLAN traffic. Lockdown Sentry initiates a connection to a Lockdown Enforcer located at an organization's headquarters.
The central Lockdown Enforcer learns the switch connected to the Lockdown Sentry. By learning the switch and subsequently manipulating port VLAN assignments, Lockdown Enforcer has the ability to enforce policy remotely. Lockdown Enforcer, through Lockdown Sentry, can recognize devices attempting to connect to the network, evaluate them against policy and make access decisions based on the outcome.
Why customers choose Lockdown Sentry:
- Cost effective network access control for smaller offices and remote locations.
- Provides the highest level of security by individually quarantining non–compliant devices and steering unauthorized users to appropriate network segments, whether it is Internet access only or quarantine.
- Protects users and devices at remote locations from one another – not just protecting headquarters from remote offices, such as is found when deploying inline solutions.
Features
Secure Connection Between Branch and Core Networks
Lockdown Sentry™ creates a tunnel for secure network access control communications between the branch and the core. Through this tunnel, Lockdown Enforcer™ can deploy any network access control capability across the WAN.
Enables Guest and Device Registration in Remote Offices
Lockdown Sentry allows user and device registration to be deployed in remote offices. This ensures contractors, vendors, and other guests can be assigned to appropriate network resources, without requiring administrative support. Further, by enabling remote office registration, IT and security can use Lockdown Enforcer's powerful reporting capabilities to create insight into guest usage in remote locations.
Small Form Factor
Cost–effective appliance–based network access control solution allows organizations to extend policy enforcement to hard–to–reach, difficult–to–secure locations. Minimal space and power requirements simplify deployment.