|
SJG Enterprise Integration | "Providing EAI related products and services across all industries" |
Switch Access Control enterprise network access management system
SWAT – Protect networks from unauthorized endpoint devices. Easily manage the access of every endpoint device such as laptops, PDAs, Access Points and Desktops to networks. SWAT notifies, reacts and stops immediately every unauthorized connection attempt within your network.
SWAT provides:
ESM platforms supported:
Status – First implementations in large banks and operators
Easily manage the access of every endpoint device such as laptops, PDAs, Access Points and Desktops to your global network. SWAT notifies, reacts and stops immediately every unauthorized connection attempt within your network.
SWAT - Switch Access Control, is an enterprise network access management system.
SWAT provides:
An enterprise network contains thousands of LAN access points which allow foreign and unauthorized users to access the network.
In order to prevent a situation in which each socket functions as a free network access point to the internal network for every unauthorized device, there are several security mechanisms that are available today.
These mechanisms handle most the access control problem, by enabling 802.1x standards on the enterprise switches or by implementing the switches port security using MAC filtering. However these mechanisms suffer from extensive installation and maintenance overhead. They also require infrastructure and architectural changes.
These solutions also add some management and security problems by themselves.
In order to solve the problem presented above, Xor Technologies has developed SWAT, a switch access control management system. It is based on management of MAC addresses, which are associated with devices permitted to access the network. SWAT combines alert handling mechanisms (known as trap processing) and fast low-bandwidth switch polling, in order to locate newly connected stations and validate them by using their MAC addresses for identification.
SWAT implements an easy to use and deploy web based GUI with full management capabilities. SWAT's easy operation includes three main running modes:
SWAT enables the building of an organization's hierarchical tree. The hierarchical tree describes the organization's structure and contains:
Based on this organizational tree, SWAT's alerts show the exact location of an intruder connecting to the network in addition to its switch's slot and port information.
This feature is also used for location based permission rules for given devices. The organizational tree data and the connection between network sockets and switch slots & ports can be imported from existing asset management platforms in the organization or it can be fully maintained using the SWAT GUI only.
ESM Integration SWAT allows quick integration with ESM platforms or enterprise inventory/database, if such exists, for acquisition of the enterprise's network topology and MAC/IP associations. SWAT can also be used to leverage the ESM platforms capabilities to show port–switch–MAC–IP–socket-physical room information in trap details displayed by the ESM platforms ESM platforms supported: HP OpenView NNM IBM Tivoli Netview CA Unicenter TNG Xor's Layer 2 Xtender
Flexible MAC Permissions SWAT enables to set MAC permissions according to several flexible rules. Specific MACs can be allowed to connect specific network sockets, buildings, rooms, VLANs, switches, ports, at given time slots, etc. Example MAC permission set scenarios: Allow a laptop to connect only to a specific floor on a specific building. Allow only specific stations to connect to sockets in a given building.
Since SWAT is based on a relational database, it is possible to build every report needed for management. SWAT arrives with a large number of built-in reports such as:
SWAT installation is straight forward and easy to maintain. It requires a single Windows based server with SQL server for database and reporting capabilities. The SWAT client is pure HTTP/s web-based. No additional components are needed to be installed and no switch OS or hardware upgrades are needed.
For large installations with thousands of switches SWAT has a distributed and scalable deployment. SWAT uses an asynchronous SNMP polling mechanism. This enables periodic short scanning cycles for the switches for the guarantee of immediate new MAC discovery.
This implementation includes mechanisms to minimize the network traffic required for the new MAC discovery.
Organizations manage their OVO monitoring templates either per each component or as groups. This creates the following obstacles:
If the organization decides to use a "per entity" approach it can't define and monitor a global monitoring policy.
Whilst if the organization defines a global monitoring policy it can't be flexible to adopt to each entity needs, thus set the lowest common monitoring denominator.
Adaptive Configuration management for HP's OVO, allows enterprises to enjoy both approaches, creating adaptive global models and still maintaining flexibility to change the monitoring for each entity (server, applications, and db).
The product supports:
