Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

Policy Enforcement

Security policy enforcement maintains the integrity of endpoint PCs and the enterprise network as a whole. Administrators can enforce all critical areas of endpoint security, including network access privileges of all users, PCs, and applications. This precise level of control prevents an unsecured or compromised PC from serving as an entry point for a worm or hacker attack.

Total Access Protection
Our policy enforcement ensures that every computer connected to the network is secure and compliant with the enterprise policy. It delivers Total Access Protection for the enterprise-an industry first. Our client-based and clientless products enable Total Access Protection, under which all enterprise network users can be protected.

 

Larger Image
Larger Image

You can protect:

  • Employee PCs and those used by guests such as business partners, suppliers and customers

  • Remote and internal PCs

  • PCs using either wired or wireless access

Total Access Protection enforces endpoint security policy by checking for and enforcing compliance with a broad range of security elements including required patches, the latest antivirus updates, registry keys, files, and applications. This protection is provided through enforcement of remote access security, enforcement of wired and wireless LAN security policy, and by controlling remote access by guest endpoints.

Enforcement of Wired & Wireless LAN Security Policy
Our solutions support the industry standard 802.1x Extensible Authentication Protocol (EAP) to extend policy enforcement inside the perimeter to both wired and wireless LANs. Our products integrate with more than 200 enterprise switches, wireless access points, and other network access devices from more than two dozen leading vendors to enforce security policy. They check each endpoint for compliance with all policy elements and communicates the result to the EAP-enabled switch or wireless access point.

Controlling Remote Access by Guest Endpoints
While client-based security provides the most comprehensive protection for vulnerable endpoints, in most cases an enterprise is unable to install client software on guest computers that access its network. Network guests such as business partners, customers, and even employees using home PCs are allowed to connect to an enterprise's web-based portals, application, and data. If their PCs have been compromised by keystroke loggers or other types of spyware, they can cause the same types of security breaches as unprotected enterprise assets. We close this security hole.

As enterprise perimeters continue to expand and always-on computing devices proliferate, we are committed to supporting open standards and emerging technologies to ensure that any host connected to enterprise computing resources by any means will be secure and compliant with enterprise policy. Our history of innovation means proactive protection against vulnerabilities before exploits can even occur.