search

Alcatel OS6400-24 Bedienungsanleitung Seite 3

  • Herunterladen
  • Zu meinen Handbüchern hinzufügen
  • Drucken
  • Seite
    / 4
  • Inhaltsverzeichnis
  • LESEZEICHEN
    • Bewertet. / 5. Basierend auf Kundenbewertungen
Seitenansicht 2
802.1x user
Regular LAN user
Guest
InfoExpress
CyberGatekeeper
Policy Server
OmniSwitch 6400
or OmniSwitch 6850
Production
network
Remediation
server(s)
Employee,
contractor or
guest connects
to the network
OmniSwitch 6400 or 6850 provides
authentication and identifies user
profile. It ensures if HIC check
is needed for this user
(802.1x, MAC, Captive Portal)
OmniSwitch 6400 or 6850 redirects traffic
to the InfoExpress CyberGatekeeper policy
server and the remediation servers
InfoExpress CyberGatekeeper policy server receives
HIC report from CyberGatekeeper Agent and informs
the OmniSwitch 6400 or 6850 if the device has passed
or failed
If HIC passed, OmniSwitch 6400 or 6850 selectively
allows device traffic to production network
following policy in user profile. If HIC failed,
OmniSwitch 6400 or 6850 restricts traffic to
remediation network only
1
3
2
5
4
Resident or on-demand agent
continuous surveillance
802.1x user
gular LAN u
Guest
Alcatel-Lucent Operating System for OmniSwitch LAN Switches with Integrated CyberGatekeeper Solution | Data Sheet 3
web server. From here the InfoExpress
CyberGatekeeper web agent is automat -
ically downloaded onto the end-user’s
device. This web agent communicates
with the InfoExpress CyberGatekeeper
Policy Server and performs an integrity
assessment. When complete, the agent
reports the endpoint’s status to the
policy server. If the endpoint complies
with security policies, it is allowed
access to the network. Otherwise it
is directed to the remediation server
so it can be patched to meet security
r
equirements.
The endpoint HIC test is not a one-time
test; it is a periodic and continuous
process that provides constant surveil -
lance while the endpoint is connected
to the network. If at any time the
endpoint device fails the HIC test, its
access is automatically restricted to the
remediation network. The InfoExpress
CyberGatekeeper agent may be pre-
installed on Microsoft
®
Windows
®
,
Mac OS
®
X, or Linux
®
operating
systems, or the user’s web browser can
be redirected to a download page to
load a web-based on-demand version
of the agent.
Easy to deploy
The Alcatel-Lucent/InfoExpress solution
is easily deployed. The authentication
and HIC redirection are built into the
Alcatel-Lucent Access Guardian, which
is a function of the AOS, Release 6.3.4.
Once turned on, all that is needed is
the addition of the InfoExpress
CyberGatekeeper Policy Server, the
InfoExpress CyberGatekeeper Agent,
and the creation of network security
policies. No modifications to the net -
work are needed, meaning deployment
takes hours instead of days.
Saves time and money
Once in place, the automated
compliancy checking and updating
means fewer support calls to apply
software upgrades and system patches.
In addition, because each endpoint is
more secure (endpoint access is restrict -
ed at the switch level until compliance
is met), there is less chance of a
security breach from malware being
introduced to the network.
Simplifies network management
The Alcatel-Lucent Access Guardian
and InfoExpress CyberGatekeeper
simplify network management of
endpoints. The edge switch integrates
authentication, device compliance and
access control functions directly into
the hardware. Switch-based security
functions allow an administrator to
configure, manage and maintain the
entire security infrastructure more
efficiently and without additional
equipment. HIC provided by the
InfoExpress CyberGatekeeper simplifies
network maintenance by automatically
managing the security fitness of
endpoints.
UNP name
R
ADIUS
Guest user
Employee
What?
This feature is to provide the capability to
have roles/profiles assigned to users during
a
uthentication
More than just a VLAN
Eases implementation of central RADIUS
c
onfiguration
Scalable deployment with 8 distinct ACL/QoS
policy lists
How?
UNP name is stored in RADIUS and returned
to the switch
The switch maps the UNP name to the actual
profile attibutes
Profiles determine
¬ VLAN ID (mandatory)
¬ HIC flag (optional)
¬ QoS/ACL Policy LIst Name (optional)
Benefits
Simplify network access control management
U
NP name attibuted:
• VLAN ID
• HIC flag
• QoS policy list
Figure 2. User network profile (UNP)
+
Figure 3 OmniSwitch + CyberGatekeeper integration
Seitenansicht 2
1 2 3 4

Kommentare zu diesen Handbüchern

Keine Kommentare
Verwandte Produkte und Handbücher für Vernetzung Alcatel OS6400-24
Vernetzung Alcatel OS6855-24 Bedienungsanleitung   (8 Seiten)
Vernetzung Alcatel OS-6124 Bedienungsanleitung   (8 Seiten)
Vernetzung Alcatel OS6400-24 Betriebsanweisung   (55 Seiten)
Vernetzung Alcatel OS-6124 Bedienungsanleitung   (8 Seiten)
Vernetzung Alcatel One Touch X200S Bedienungsanleitung   (20 Seiten)
Vernetzung Alcatel SpeedTouch Speed Touch Home Asymmetric Digital Subscriber Line (ADSL) Modem Betriebsanweisung   (34 Seiten)
Vernetzung Alcatel One Touch X200S Betriebsanweisung   (21 Seiten)
Vernetzung Alcatel OS6855-24 Bedienungsanleitung   (9 Seiten)
Vernetzung Alcatel OS6850-48 Bedienungsanleitung   (9 Seiten)
Vernetzung Alcatel OS6850-48 Bedienungsanleitung   (20 Seiten)
Vernetzung Alcatel Router Bedienungsanleitung   (7 Seiten)
Vernetzung Alcatel Modem Bedienungsanleitung   (2 Seiten)
Vernetzung Alcatel OmniSwitch/Router Betriebsanweisung   (346 Seiten)
Vernetzung Alcatel OS6400-48 Bedienungsanleitung   (8 Seiten)
  • Prescolite Raytel LLC M Vision Van Mechelen Bug-o-systems
  • Linksys Vernetzung GE Trinkwasserkühler Brenthaven Notebook-Hüllen Canon Autobatterieladegeräte Lenovo Laser- / LED-Drucker
  • Samsung GT-I9070 Philips ID9372B Pioneer VSX-709RDS Troy-Bilt 01919-1 Targus TSS848
  • Sony KDL-50R450A Bedienungsanleitung Sony ZS-E5 Bedienungsanleitung Samsung ME179KFETSR Bedienungsanleitung Canon LX-MU700 Bedienungsanleitung Precor S3.45 Bedienungsanleitung