Safe•Connect’s policy modules
Policy administrators can select from a series of pre-configured policies on authentication, anti-virus or anti-spyware protection, patch maintenance levels, and peer-to-peer file sharing, or create their own using the custom policy builder module.
Network access is contingent on meeting organizational policies, but administrators also have the ability to prescribe a series of warnings based on enforcement policies. This allows an organization the flexibility to set enforcement based on company roles or device deficiencies as they see fit.
policy modules include:
| Authentication and Guest Registration |
Prevents unauthorized user access to core network resources
and Internet services. Automates the registration of end user computing
devices and audits agreement to acceptable use policies. Role-based policy
management integrates with enterprise AD, LDAP, IAS, or RADIUS directory
services.
|
| Anti-Virus |
Manages compliance with anti-virus software and definitions.
|
| Anti-Spyware |
Manages compliance with anti-spyware software and updates.
|
| Microsoft OS Patch |
Ensures that users are at desired security patch maintenance
levels.
|
| P2P File Sharing |
Prohibits the use of P2P file sharing and helps educate
users on security best practices.
|
| Access Point |
Manages adherence to rogue access point devices that
utilize Network Access Translation (NAT).
|
| Custom Policy Builder | Enables organizations to build custom policies and broadcast messaging to address their unique endpoint security standards and enforcement rules |
| Broadcast Messaging |
Enables organizations to send on-demand messages for
emergency communications or informational purposes by location or policy
group.
|
authentication and guest registration
policy module
The Safe•Connect Authentication and Guest Registration Module prevents unauthorized users from accessing the network and automates the registration of end user devices. The Policy Notification option offers end users the opportunity to review and accept the Acceptable Use Policies of the organization prior to accessing network resources. This allows the organization to audit users’ acceptance of their policy, as well as to maintain a history of the individual’s policy compliance via the Safe•Connect Policy Management Console.
anti-virus policy module
This policy module monitors each individual computer device (desktop, laptop, or PDA) for the anti-virus software components required by the organization to maintain secure operations before and after network access. It ensures the appropriate processes for anti-virus protection are active and can verify the currency of the updates. Devices not in compliance with policy can be quarantined, and directed to the appropriate remediation sites to correct any deficiencies.
anti-spyware policy module
The Safe•Connect Anti-Spyware Policy Module monitors the use of anti-spyware software as set forth by organizational policy. It validates software and security settings for changes and helps ensure that the most up-to-date protection is in place. It can isolate and quarantine those machines not in compliance. Customized remediation guidance is available to assist the end user in regaining network privileges.
microsoft patch policy module
This module ensures that end user devices are in compliance with organizational policies regarding Microsoft Patch Update Services or participation in other desired enterprise patch management systems. The Safe•Connect Patch Policy Module can also validate that specific Microsoft KB numbered patches are applied. In the event of a policy violation, the end user will be automatically directed to a remediation site and instructed on how to become compliant. The user can be denied network access, or given a series of warnings based on the organization’s enforcement policies.
p2p file sharing module
This module validates computer content for compliance with legal issues such as digital rights management and copyright infringement. The Safe•Connect P2P File Sharing Policy Module identifies whether users are participating in dowloading or uploading (sharing) content using known illegal file sharing services. Depending on the policies set by the organization, this module can prevent outbound P2P file sharing and refer the end user to legal on-line procurement alternatives.
Implementation of this module enables the organization or school to promote the legal concerns of the Recording Industry of America (RIAA) and other copyright and music piracy organization's concerns.
access point module
The Safe•Connect Access Point Module manages adherence to both wired and wireless rogue access point devices that utilize Network Access Translation (NAT). Endpoint devices situated behind a NAT'd device (router) can not be recognized or assessed for security posture -- they therefore represent a significant vulnerability to an organization's enterprise security strategy. Safe•Connect's Access Point Module automates an organization's enforcement of established access point policies and can automatically quarantine devices connecting to the network and provide remediation guidance.
custom policy builder module
The Safe•Connect Custom Policy Builder Module allows organizations to build customized and granular policies to address their unique endpoint security standards and enforcement rules. Organizations can customize endpoint policies based on file type, process, service, or registry settings. This module affords administrators the ability to create their own enforcement policies and tailor specific warnings and quarantine web pages to support those policies. This module also provides a customized and interactive method of communicating with and educating the end user community.
broadcast messaging
The Safe•Connect Broadcast Messaging Module allows organizations to send broadcast messages with up-to-the minute information or emergency communications by policy group or location, or based on roles users occupy within the organization.