search

Extreme Networks Sentriant AG Bedienungsanleitung Seite 3

  • Herunterladen
  • Zu meinen Handbüchern hinzufügen
  • Drucken
  • Seite
    / 8
  • Inhaltsverzeichnis
  • LESEZEICHEN
    • Bewertet. / 5. Basierend auf Kundenbewertungen
Seitenansicht 2
Sentriant AG200—Page 3
Extreme Networks Data Sheet
Multiple Enforcement Methods
Sentriant AG200 supports several
standards-based enforcement schemes for
quarantining endpoints making it well
suited to a variety of network infrastructures
(see Figure 2). For out-of-band deployment,
Sentriant AG200 supports both DHCP and
802.1X enforcement methods. Out-of-band
deployment allows the Sentriant AG200
server to reside centrally and yet still test
and enforce policy across all endpoints in
the network.
When using DHCP enforcement,
Sentriant AG200 integrates with an
existing network DHCP server to assign
non-compliant machines IP addresses in
an isolated quarantine subnet. When using
802.1X enforcement, Sentriant AG200
leverages existing 802.1X-enabled
infrastructure to add powerful endpoint
testing to basic network authentication.
Non-compliant devices are quarantined by
placing them into an isolated VLAN or by
creating dynamic ACLs using RADIUS
attributes passed back to the network
infrastructure. The 802.1X enforcement
option works with any client supplicant
and supports authentication pass-through
to an existing RADIUS server, Microsoft
Active Directory or OpenLDAP.
For inline deployments, Sentriant AG200
is positioned physically between the
endpoint devices and the rest of the
internal network. Since Sentriant AG200
can itself deny endpoints access to the
network, no policy enforcement via internal
routers, switches or other devices are
required. Inline deployment is perfect for
handling remote endpoints by placing the
Sentriant AG200 server directly behind any
VPN concentrator or for handling wireless
endpoints by placing Sentriant AG200
between the wireless controller and the
wired LAN.
Single-Server or Multi-Server
Deployment
For basic network environments a single
Sentriant AG200 can be used to provide a
complete standalone NAC solution for up to
1,500 endpoints. For more complex
environments, Sentriant AG200 supports a
multi-appliance architecture consisting of a
central Management Server that controls
one or more dedicated Enforcement
Servers. Each Enforcement Server can be
positioned in a different region of the
network, and can and utilize a different
enforcement method. This approach makes
it possible to deploy the NAC solution
across complex, heterogeneous networks
and manage policy consistently across all
access types (wired, wireless, VPN) in all
locations. Sentriant AG200 also supports an
advanced clustering capability that allows
groups of Enforcement Servers to operate
together to achieve superior scalability and
resiliency at each enforcement point.
Sentriant AG200 automatically distributes
the overall endpoint testing load across all
servers in a cluster, providing a straightfor-
ward way to scale the solution beyond the
limits of a single Enforcement Server.
Clustering also provides a solution for high
availability needs. All endpoint state
information is synchronized throughout the
cluster and should any one server fail, the
remaining servers will automatically recover.
Simple, Easy Installation and
Rollout
Regardless of enforcement method,
Sentriant AG200 offers a range of enforce-
ment levels from passive monitoring (no
enforcement) to strict enforcement where
non-compliant endpoints are quarantined
immediately. These graduated enforcement
levels can be can be configured globally or
on a per-policy basis. This level of flexibility
allows Sentriant AG200 to be rolled out
gradually into a network in a controlled
manner to minimize impact to IT staff and
end-users.
© 2008 Extreme Networks, Inc. All rights reser ved.
Flexible Deployment Options
Sentriant AG200 is a powerful access control solution that is easily deployed, supports industry standards and scales to
meet the needs of the largest organizations.
Corporate
Network
Sentriant AG200
Summit X450
DHCP Server
DHCP Enforcement
Corporate
Network
Sentriant AG200
Summit X450
RADIUS
Server
OpenLDAP
Active
Directory
802.1X Enforcement
``
Corporate
Network
Sentriant AG200
Firewall
PassFail
``
PassFail
``
PassFail
In-line Enforcement
Internet
Figure 2: Enforcement Options
Seitenansicht 2
1 2 3 4 5 6 7 8

Kommentare zu diesen Handbüchern

Keine Kommentare
Verwandte Produkte und Handbücher für Software Extreme Networks Sentriant AG
Software Extreme Networks Summit WM Series Bedienungsanleitung   (18 Seiten)
Software Extreme Networks Summit WM Series Bedienungsanleitung   (9 Seiten)
Software Extreme Networks Sentriant AG Bedienungsanleitung   (6 Seiten)
Software Extreme Networks Summit WM Series Bedienungsanleitung   (8 Seiten)
Software Extreme Networks Policy Manager Bedienungsanleitung   (22 Seiten)
Software Extreme Networks ExtremeWare Command Spezifikationen   (254 Seiten)
Software Extreme Networks ExtremeWare Version 7.8 Spezifikationen   (66 Seiten)
Software Extreme Networks ExtremeXOS ScreenPlay Bedienungsanleitung   (10 Seiten)
Software Extreme Networks Summit WM Series Bedienungsanleitung   (9 Seiten)
Software Extreme Networks ExtremeWare Enterprise Manager Betriebsanweisung   (432 Seiten)
Software Extreme Networks ExtremeXOS ScreenPlay Spezifikationen   (94 Seiten)
Software Extreme Networks ExtremeWare Enterprise Manager Betriebsanweisung   (394 Seiten)
Software Extreme Networks ExtremeXOS ScreenPlay Betriebsanweisung   (38 Seiten)
Software Extreme Networks Summit WM Series Betriebsanweisung   (228 Seiten)
Software Extreme Networks Policy Manager Bedienungsanleitung   (7 Seiten)
Software Extreme Networks WM20 Controller Spezifikationen   (170 Seiten)
Software Extreme Networks Summit WMScanner 12.0 Spezifikationen   (195 Seiten)
Software Extreme Networks ExtremeWare Enterprise Manager Betriebsanweisung   (264 Seiten)
Software Extreme Networks Ridgeline Guide Spezifikationen   (61 Seiten)
Software Extreme Networks Ridgeline Guide Spezifikationen   (34 Seiten)
  • Envious Technology Twin Eagles U.S. Converters Maxsa Rivet King
  • NEC Dokumentenkameras Eton Taschenlampen Sharp Kassen SINGER Wäschedampfreiniger LifeSource Uhren
  • LG 47LD650 Vox Pedal Sony DSC-S600 Yamaha HTR-6130 DVR 4-CH
  • Samsung GT-S5360 Bedienungsanleitung ENERMAX EMK3201 Bedienungsanleitung Pioneer VMS-550 Bedienungsanleitung Kenwood CH550 Bedienungsanleitung Samsung SP30 Bedienungsanleitung