|
Management and Reporting
Centralized Management Interface
Manage all EpiForce®-protected systems through a single console, regardless of platform or physical location - without reconfiguring the network.
VM-Enabled Admin Console (EpiForce VM only)
Install EpiForce VM console on one or more VM, physical machines or both, enabling greater administrator flexibility.
Role-Based Delegation of Admin Privileges
Maximize flexibility in operationalizing security policy by delegating administrator privileges to five roles including Super User, Account Management, System Settings, Operations, Audit and Read-Only.
Powerful Administrator Workflow
Utilize powerful workflows to create, submit, approve and commit security policy. All administrator actions are tracked as Change Sets and entered into the workflow process. Committed changes are deployed based on user-defined schedules.
Enhanced Alert and Activity Logging
Monitor operations of all client software through real-time alerts on penetration attempts, operational status, IPSec protocol status and an audit trail of key management and encapsulation protocols. EpiForce stores activity logs in standard Syslog and Windows Events Log formats
Detailed Management Reporting
Using standard reporting tools such as Crystal Reports, detailed reports may be generated on administrators, client software alerts, configurations, exceptions and system status via Syslog and Windows Events Logs.
Automated, Mass Software Upgrades
Deliver and execute EpiForce client software upgrades for all servers and endpoints with only a few mouse clicks. User-defined distribution servers ensure efficient software upgrades without overburdening the network or Admin Servers.
Installation and Interoperability
Cross-Platform Support
EpiForce client software (servers and endpoints) is available for a broad range of operating systems, providing the flexibility to secure complex mixed enterprise environments common in large companies.
Legacy Platform Support
Legacy platforms and mission-critical systems are easily protected with EpiForce Guardian appliance.
Compatible with VMware ESX Server (EpiForce VM only)
Protect VMs created and managed with VMware ESX Server 3.0 and 3.5. Maintains security policy while machines are physically moved or migrated using VMotion or VirtualCenter.
Network Layer Transparency
Network layer implementation accelerates deployments by being transparent to infrastructure, applications and users. Legacy applications are secured without rewriting code.
Broad VPN Client Support
EpiForce is compatible with VPN client software from leading vendors including Cisco.
Auto Create and “Push” Install Support
EpiForce enables thousands of servers and endpoints to be added and assigned default security policy at once, streamlining initial and incremental deployments. Client software can be deployed through most standard "push" installation packages such as Microsoft SMS or custom scripts.
Operations
Logical Security Zones
Isolate servers and endpoints into one or more private communities without regard to their physical location. Logical security zones can be based on IP addresses or ranges, ports, geographic regions and user groups – almost any factor. Logical security zones can be spanned across physical and geographic boundaries and can be sized for almost any application.
Virtual / Physical Security Zones (EpiForce VM only)
Include both VMs and physical servers and endpoints into logical security zones and maintain their membership during migration or conversion to virtual machines.
Policy-Based Encryption of Data in Motion
Efficiently secure communications between servers and endpoints based on port-level policy. Policy-based encryption is highly scalable, maximizes application performance and minimizes bandwidth requirements. EpiForce combines strong encryption and data integrity using industry-standard protocols.
Distributed Architecture
EpiForce is a distributed architecture with policy enforced between servers and clients themselves, eliminating the bottlenecks and single points of failure common in hardware-based solutions like firewalls, VLANs and NAC.
Policy Persistence
Security policy deployed by EpiForce remains persistent, regardless of the physical location of a server or endpoint. When a machine is moved, the security policy goes with the machine and does not require any policy changes or administrative action. When EpiForce VM is deployed, agents also automatically reconfigure security policy when a VM is restarted, avoiding a security gap.
Customizable Failover Procedures
Granular and customizable failover procedures enable more flexibility to deploy EpiForce into normal business processes.
Support for Unprotected Hosts
Enforce policy for servers, endpoints and devices that don’t have an EpiForce agent installed, allowing printers and other devices to be included in logical security.
On-Demand Policy Distribution
Facilitate large deployments and the extension of EpiForce to servers and endpoints that have minimal disk and memory resources.
Minimal Performance Impact
VeriTest, an independent testing lab, found that EpiForce imposes a minimal impact to CPU utilization and typical network traffic flows. Click here to download the VeriTest report.
|
