Select Page

logo genian

Genian NAC membantu mempertahankan visibilitas & kontrol cerdas dari semua perangkat yang mendukung jaringan dan memastikan perangkat tersebut berada pada tingkat keamanan dan kepatuhan tertinggi

genian-nac
See every connected device holistically
• Identify all network-enabled devices and their attributes
• View from all perspectives (Device, IP, Switch, WLAN)
• Assess the compliance state of all connected devices

Control all connected devices contextually
• Enforce granular policies to regulate access
• Control endpoint’s systems configuration and network access
• Track endpoint activities and maintain IT security baseline

Automate daily IT security tasks easily
• Automate on-boarding process with workflows, approvals, and notifications
• Remove IT security silos by integrating with third-party solutions
• Automate the incident response and mitigation process

Maksimalkan efisiensi Network Security dan operasional IT Anda dengan Device Platform Intelligence

Next-generation device fingerprinting for the IoT era

Genians Device Platform Intelligence (DPI) combines technology information with business context to understand where vulnerabilities may exist. This demands not only a more comprehensive view of the devices themselves, but also better understanding of risk indicators.
• Layer 2 – based sensing technology for accurate detection of device platform
– Not just “Android phone” but “Samsung Galaxy S6 mobile phone”
• Expand visibility into IT/OT convergence
– IoT, ICS, FAB, SCADA
• Manage the entire lifecycle of all network-enabled devices
– Manufacturer/Vendor’s viability, device EOL & EOS


 

genian nac smart visibility

SMART VISIBILITY

See all connected “things” and their compliance status
• Contextual access information (What, Who, When, Where, and How)
• Network Information (Device platform, Connectivity, Threat/Risk, etc) via Network Sensor
• Endpoint configuration and compliance status via Agent (e.g Windows Updates)

Genian NAC USER AUTHENTICATION

USER AUTHENTICATION

Identify who accesses your network
• Captive Web Portal (Pre/Post-admission activities)
• Built-in RADIUS server
• Integration with Active Directory

Genian NAC CONTEXTUAL ACCESS CONTROL

CONTEXTUAL ACCESS CONTROL

Respond immediately
• Condition-based grouping (Over 500 predefined conditions)
• Policy assignment based on the status change of endpoint compliance
• End-to-end access control

Genian NAC IP ADDRESS MANAGEMENT

IP ADDRESS MANAGEMENT

Manage IP/MAC in real time
• Identify the usage of all IP address
• Manage MAC Address whitelist / blacklist efficiently
• Prevents IP conflicts and manage IP ownership

Genian NAC Switch Port Management

SWITCH PORT MANAGEMENT

Secure where it connects
• Identify all devices connecting to a specific port
• Monitor Switch port status (e.g. Up/down, Security, 802.1x, VLAN)
• Discover Switch port information of connected devices

Genian NAC WLAN Management

WLAN MANAGEMENT

Control Wifi Security and Wireless Access
• Monitor all SSIDs in your network and identify who connects to which SSIDs
• Discover rouge and mis-configured wireless AP’s
• Discover the device locations via Network Sensor or Agent
• Built-in RADIUS Server (EAP Support)

Genian NAC Desktop Management

DESKTOP MANAGEMENT

Ensure the highest levels of security and compliance
• Destop Configuration Management (e.g Security Settings, Internet Options, NIC, DNS)
• OS Updates Management (Windows, macOS)
• Application Management (Deploy, Update, Delete)
• External Device Control (e.g. USB Thumb-drive, CD-ROM, External-HDD)

Genian NAC IT Security Automation

IT SECURITY AUTOMATION

Automate your day-to-day IT operations easily
• On-boarding Process (BYOD, Guest, IP provisioning, Peripheral Device Usage)
• Access Approval Request (Security & Privacy Consent, User/Device Registration, IP Request)
• System Integration (via RESTful API, Webhook, Syslog)


VIEW AND CONTROL ALL NETWORK-ENABLED DEVICES IN REAL TIME
Genian NAC architecture is highly scalable and operates completely out-of-band.
Genian NAC uses L-2 based network sensors without adding complexity to avoid administrative overhead.

Genian Device Platform Intelligence

 

GENIAN NAC FEATURES

Visibility

* Agent required
 

Device Information
• Device name
• Platform name
• Node Type
• Connection status
• Authentication status
• NAT Device

Device Lifecycle
• Manufacturer name
• Manufacturer Headquarters
• Manufacturer Business Status
• Device EOL, EOS
• Actual device image

User
• Username
• Account info
• Contact info
• RADIUS Authentication

 

Network
• MAC/IP (IPv4 / IPv6)
• Hostname / Domain
• DNS Name
• NIC Vendor
• SSID
• Connection Type
• Switch Port
• Traffics
• TCP Connections
• Services
• Open Port

Threat/Risk
• ARP
• ARP bombing
• MAC/IP cloning
• Invalid Gateway
• Ad Hoc Network
• Port Scan
• Unknown Service Request

 

Security*
• Compliance status
• OS Patches and Updates
• Antivirus
• Firewall
• Screen Lock
• Password Check
• Logs

Hardware Installed*
• Motherboard
• CPU
• Memory
• Hard drives / Storage size
• NIC (Wired, Wireless)
• Operating System

Peripherals*
• USB Devices
• Monitor, Printer

 

Operating System*
• Type
• Version
• Languages
• Sharing folders
• Web browser
• WMI statusSoftware installed*
• Name
• Version
• Installed date
• Installed path
• Detected date
• Removed date

Policy Management

Desktop Management*

 

IP Address Management Policy
• Trusted IP/MAC lifetime management
• Block IP changes, Prevent IP conflicts

Classification & Enforcement Policy
• Node Group: Dynamic Group using over 500 Conditions
• Define network access rule per each node group
(Node group + Permissions)
• Permissions: Network range, Services, Time

Multi-layered Enforcement Method
• Layer 2: ARP Poisoning (Network Sensor)
• Layer 3: TCP reset (Mirror Sensor)
• Layer 3: Inline enforcer (Dual-homed Gateway)
• Endpoint: Agent-based control
• 802.1x: Built-in RADIUS server
• DHCP: Built-in DHCP server
• Switch: Port shutdown (SNMP)

 

 

• Change Computer Name
• Check Password Validation
• Collect System Information Using WMI
• Configure Windows Security Settings
• Control OS Updates (Works for isolated network)
• Configuring 802.1X Wired Authentication Profile Settings
• Control Antivirus Software Settings
• Control DNS
• Control External Device (e.g. USB, Printer)
• Control Internet Explorer Security Settings
• Control Network Folder Sharing / Interface / Traffic
• Control Power Options, Screen Lock
• Provide Wireless Connection Manager (Zero configuration)
• Control WLAN
• Deploy Files
• Inspect TCP Connections
• Manage ARP Table
• Install / Remove softwares
• Run Script
• Terminate Process

 

Cek rincian datasheet Genian NAC untuk edisi dan fitur yang include di dalam masing-masing versinya di artikel berikut ini.


Dapatkan segera harga ter-update dan terbaik dari seluruh produk Genian NAC di Platinum Computer. Hubungi kami sekarang juga!

Genian NACEncompass IT Security Management & Operations