LAN Segmentation
LAN segmentation is a valuable tool for separating various user groups and restricting access to critical resources. However, the traditional mechanisms of VLANs and ACLs are cumbersome to implement and troubleshoot and provide inadequate separation for security demands.
The challenges associated with LAN segmentation include:
- physical segmentation is too costly
- logical segmentation is too time consuming and easily circumvented
- VLANs based on role requires redesigning the LAN
- new ACLs are difficult to implement
The identity-based control at the foundation of the ConSentry architecture provides a much simpler alternative for LAN segmentation and network access control. With the LANShield platforms you can quickly and easily:
- authenticate users to determine appropriate access to the network
- automatically learn user role during authentication
- enforce access control, to applications and servers for example, based on role
- track the activities of all users
- easily tie incidents to policies for compliance and troubleshooting
LAN segmentation with no changes to your LAN. All delivered by a single, integrated platform for ease of operations and troubleshooting.
ConSentry – Intelligent Switching
|
»
