Self-remediation—Reduces IT administration by empowering users to bring their machines into
●
compliance.
Subscription-based licensing—Includes all test updates and software upgrades.
●
The Sentriant AG Process
Sentriant AG administrators create NAC policies that define which applications and services are
permitted, and specify the actions to be taken when endpoints do not comply. Sentriant AG
automatically applies the NAC policies to endpoints as they log into the network, and periodically as
the endpoints remain logged into the network. Based on results, endpoints are either permitted or
quarantined to a specific part of the network, thus enforcing the organizational security standards.
Sentriant AG tracks all testing and connection activity and produces a range of reports for auditors,
managers, and IT staff.
Sentriant AG performs pre-connect testing; when an endpoint passes the NAC policy tests (or is
otherwise granted access), the endpoint is allowed access to the network. If you have external Intrusion
Detection System/Intrusion Prevention System (IDS/IPS) systems that monitor your network for
attacks, you can configure these external systems in Sentriant AG so they can request that Sentriant AG
quarantine an endpoint after it has been connected (post-connect).
About Sentriant AG
NAC Policy Definition
NAC policies consist of individual tests that evaluate the security status of endpoints attempting to
access the network. Specific tests assess operating systems, verify that key hotfixes and patches have
been installed, ensure antivirus and other security applications are present and up-to-date, detect the
presence of worms, trojans, and viruses, and check for potentially dangerous applications such as file
sharing, peer-to-peer (P2P), or spyware. See
Key features include:
Out-of-the-box NAC policies—High, medium, and low security are ready to use with no additional
●
configuration required.
Standard and custom tests—Sentriant AG comes with a broad range of tests. You can also create
●
custom tests through the Sentriant AG application programming interface (API).
Automatic test updates—Sentriant AG is automatically updated with tests that cover newly released
●
patches, hotfixes, software updates, worms, and trojans, and recommended security settings for
common applications. New tests are automatically added to the test database as frequently as hourly,
ensuring immediate protection against newly discovered threats.
Organization-specific policies—Any number of NAC policies can be created and tailored to your
●
organizational needs. Create policies for like endpoints (for example, all Windows 2000
workstations), for an IP range or specific IPs, or by geographic location.
Endpoint Testing
Sentriant AG automatically tests all endpoints attempting to access your network through a LAN, RAS,
VPN, or WiFi connection. Tests are fast and you are kept informed of test progress and results. After the
Sentriant AG Software Users Guide, Version 5.2
"Tests Help" on page 421
Introduction
for more information.
31