DOCSLIB.ORG

Cisco Clean Access: a Network Admissions Control Appliance

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Cisco Clean Access: a Network Admissions Control Appliance DATA SHEET CISCO CLEAN ACCESS: A NETWORK ADMISSIONS CONTROL APPLIANCE Cisco ® Clean Access is a self-contained solution that automatically detects, isolates, and cleans infected and/or vulnerable wired and wireless devices that attempt to access a network. The solution identifies whether machines are compliant with security policies and repairs these vulnerabilities before permitting access to the network. As a Network Admissions Control (NAC) appliance, Cisco Clean Access integrates the tasks of authentication, posture assessment, and remediation into one package, making it suitable for organizations that prefer a turnkey solution over an infrastructure-based solution. PRODUCT OVERVIEW Cisco Clean Access is an end-to-end network registration and enforcement solution that allows network administrators to authenticate, authorize, evaluate, and remediate wired and wireless users and their machines prior to allowing users onto the network. This advanced, integrated suite of network security tools: • Recognizes users, their devices, and their role in the network. This first step occurs at the point of authentication, before malicious code can cause damage. • Evaluates whether machines are compliant with security policies. Security policies can vary by user type, device type, or operating system. • Enforces security policies by blocking, isolating, and repairing noncompliant machines. The machines are redirected into a quarantine area, where remediation occurs at the discretion of the administrator. Cisco Clean Access can apply posture assessment and remediation services to LAN-based user devices, wireless users, and remote users connecting through VPN concentrators or dialup servers. Cisco Clean Access is available in two deployment modes: in-band and out-of-band. With the Cisco Clean Access in-band deployment, the Clean Access Server is always inline with user traffic—before, during, and after authentication, posture assessment, and remediation. The server securely controls authenticated and unauthenticated user traffic by managing traffic policies based on protocol/port or subnet, providing bandwidth policy management based on shared or per-user, or using time-based sessions and heartbeat controls. In a Cisco Clean Access out-of-band deployment, the Clean Access Server is in-band only during the processes of authentication, posture assessment, and remediation. Once a user’s device has successfully logged on, its traffic bypasses the Clean Access Server and traverses the switch port directly. In the meantime, the Clean Access Manager provides port- or role-level control by assigning ports to specific VLANs, assigning users to specific roles that map to specific VLANs, and providing a time-based session timeout per role. All contents are Copyright © 1992–2005 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement. Page 1 of 8 Table 1 outlines the differences between in-band and out-of-band deployment modes. Table 1. Comparing In-Band and Out-of-Band Modes In-Band Out-of-Band Environments Wireless, shared media Fast core switching infrastructures; high throughput requirements NAC Enforcement Point Cisco Clean Access Server in-band Cisco Clean Access Server with authentication/quarantine VLAN Quarantine Based on access control list (ACL) Based on VLAN Switches Supported Vendor-agnostic Cisco Catalyst ® 2950, 3550, 3560, 3750, 4500, and 6500 switches Please check with your Cisco sales representative for the latest list of supported switches, or visit: http://www.cisco.com/en/US/partner/products/ps6128/prod_release_notes_list.html FEATURES AND BENEFITS Networks with Cisco Clean Access primarily benefit from: • Minimized network outages caused by viruses and worms • Enforced security policies by making compliance a condition of access • Minimized vulnerabilities on user machines through periodic evaluation and remediation • Significant cost savings by automating the process of repairing and updating user machines Authentication Integration Cisco Clean Access serves as an authentication proxy for most forms of authentication, natively integrating with Kerberos, Lightweight Directory Access Protocol (LDAP), RADIUS, Active Directory, S/Ident, and others. Roles-based access control is supported as well, enabling administrators to maintain multiple user profiles with varying degrees of access. Vulnerability Assessment Cisco Clean Access supports the scanning of all Windows-based operating systems, Mac OS, Linux machines, and non-PC networked devices such as Xbox, PlayStation 2, and personal digital assistants. The solution conducts network-based scans or can use custom-built scans as required. In a managed domain, it can also conduct scans of Windows registries without client software. Device Quarantine Cisco Clean Access can place noncompliant machines into quarantine, which prevents the spread of infection while maintaining access to remediation resources. Quarantine can be accomplished by using subnets as small as /30, or by using a quarantine VLAN. Automatic Security Policy Updates Automatic security policy updates from Cisco Systems provide predefined policies for the most common network access criteria, including policies that check for critical operating system updates and common antivirus software virus definition updates. This eases the management effort for network administrators, who can rely on the Clean Access system to constantly maintain updated policies. © 2005 Cisco Systems, Inc. All rights reserved. Important notices, privacy statements, and trademarks of Cisco Systems, Inc. can be found on cisco.com. Page 2 of 9 Centralized Management The Web-based management console allows administrators to define the types of scans required for each role, as well as the related remediation packages necessary for recovery. One management console can manage several servers. Remediation and Repair Quarantining gives devices access to remediation servers that can provide operating system patches and updates, virus definition files, or endpoint security solutions such as Cisco Security Agent. Administrators have the option of automatically installing these fixes using the Cisco Clean Access enforcement agent. Discretionary Certified Devices List The Certified Devices List allows administrators to simplify access for devices known to be clean through other means. If the Certified Devices List is empty, all machines are subject to scanning each time they enter the network. The Certified Devices List can be cleared with one mouseclick during times of high virus and worm activity. Adaptable Levels of Enforcement Network administrators can adapt to the flow of malicious code incidents by adjusting the scans required, the roles subject to scans, the use of the Certified Devices List, and the types of remediation required. They can also limit the bandwidth and protocols used based on user roles. PRODUCT ARCHITECTURE Cisco Clean Access is a software solution that is loaded onto standard, off-the-shelf servers provided by the customer. A typical deployment consists of: • Cisco Clean Access Server—The device that initiates assessment and enforces access privileges based on endpoint compliance. In in-band mode, this server sites inline with all traffic. In out-of-band mode, this server sits in the quarantine VLAN, where all devices not found on the Certified Devices List are redirected upon entry. Users are blocked at the port layer, restricting them from access to the trusted network until they successfully pass inspection. • Cisco Clean Access Manager—A centralized, Web-based console for establishing roles, checks, rules, and policies. • Cisco Clean Access Agent (optional)—A thin agent that enhances some vulnerability assessment functions and streamlines remediation. © 2005 Cisco Systems, Inc. All rights reserved. Important notices, privacy statements, and trademarks of Cisco Systems, Inc. can be found on cisco.com. Page 3 of 9 Figure 1 is a logical diagram of Cisco Clean Access in in-band deployment mode. In this configuration, Cisco Clean Access works with any 802.11 wireless access point including Cisco Aironet ® Series access points. Figure 1. Cisco Clean Access Architecture in In-Band Mode © 2005 Cisco Systems, Inc. All rights reserved. Important notices, privacy statements, and trademarks of Cisco Systems, Inc. can be found on cisco.com. Page 4 of 9 Figure 2 is a logical diagram of Cisco Clean Access in out-of-band deployment mode. Figure 2. Cisco Clean Access Architecture in Out-of-Band Mode PRODUCT SPECIFICATIONS The Cisco Clean Access Server in out-of-band mode communicates with switches using Simple Network Management Protocol (SNMP). Table 2 lists the switches that are supported. Table 2. Supported Switches Switch Minimum Operating System Cisco Catalyst 2950 Cisco IOS ® Software Release 12.1(6)EA2 Cisco Catalyst 2950 LRE Cisco IOS Software Release 12.1(11)YJ Cisco Catalyst 3550 Cisco IOS Software Release 12.1(8)EA1b Cisco Catalyst 3560 Cisco IOS Software Release 12.2(25) Cisco Catalyst 3750 Cisco IOS Software Release 12.1(14)EA1 Cisco Catalyst 4500 (for Cisco IOS Software) Cisco IOS Software Release 12.1(13)EW2 Cisco Catalyst 4500 (for Cisco Catalyst OS) Cisco Catalyst OS Release 7.1 Cisco Catalyst 6500 (for Cisco IOS Software) Cisco IOS Software Release 12.1(8a)EX Cisco Catalyst 6500 (for Cisco Catalyst OS) Cisco Catalyst OS Release 7.5 © 2005 Cisco Systems, Inc. All rights reserved. Important notices, privacy statements, and trademarks of Cisco Systems, Inc. can be found on cisco.com. Page 5 of 9 Please
Load more

Recommended publications
  • Mcafee Epolicy Orchestrator DATA SHEET
    DATA SHEET McAfee ePolicy Orchestrator Centrally get, visualize, share, and act on security insights Security management requires cumbersome juggling between tools and data. This puts the adversary at an advantage by offering more time to exploit the gap not seen between the tools and do damage. In addition, the cybersecurity workforce is limited and needs to be empowered to manage cybersecurity complexity. The McAfee® ePolicy Orchestrator® (McAfee ePO™) management platform removes the time-consuming and potential human error effort and inspires those responsible to manage security quicker and with higher efficacy. Fundamental Security Proven Advanced Security Management Start with the fundamentals. Core to any security More than 30,000 businesses and organizations trust architecture is the ability to monitor and control the the McAfee ePO console to manage security, streamline health of endpoints and systems. Industry standards and automate compliance processes, and increase such as Center for Internet Security (CIS) Controls and overall visibility across endpoint, network, and security National Institute of Standards Technology (NIST) SP operations. Big companies rely on the McAfee ePO 800 153 security and privacy controls call this out as console’s highly scalable architecture, allowing large a must. The McAfee ePO console allows you to gain enterprises to manage hundreds and thousands of critical visibility and set and automatically enforce nodes from a single console. The McAfee ePO console policies to ensure a healthy security posture across provides an enterprise security administrator with the your enterprise. Policy management and enforcement opportunity to simplify policy maintenance, pull in third- across security products for your entire enterprise party threat intelligence leveraging Data Exchange Layer is accomplished from a single console, removing the (DXL), and integrate policies bi-directionally with an array complexity of managing multiple products.
    [Show full text]
  • Hostscan 4.8.01064 Antimalware and Firewall Support Charts
    HostScan 4.8.01064 Antimalware and Firewall Support Charts 10/1/19 © 2019 Cisco and/or its affiliates. All rights reserved. This document is Cisco public. Page 1 of 76 Contents HostScan Version 4.8.01064 Antimalware and Firewall Support Charts ............................................................................... 3 Antimalware and Firewall Attributes Supported by HostScan .................................................................................................. 3 OPSWAT Version Information ................................................................................................................................................. 5 Cisco AnyConnect HostScan Antimalware Compliance Module v4.3.890.0 for Windows .................................................. 5 Cisco AnyConnect HostScan Firewall Compliance Module v4.3.890.0 for Windows ........................................................ 44 Cisco AnyConnect HostScan Antimalware Compliance Module v4.3.824.0 for macos .................................................... 65 Cisco AnyConnect HostScan Firewall Compliance Module v4.3.824.0 for macOS ........................................................... 71 Cisco AnyConnect HostScan Antimalware Compliance Module v4.3.730.0 for Linux ...................................................... 73 Cisco AnyConnect HostScan Firewall Compliance Module v4.3.730.0 for Linux .............................................................. 76 ©201 9 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.
    [Show full text]
  • Malware List.Numbers
    CLASS A - Tested once a month (and as significant updates and samples are available) (95% or higher detection rate) CLASS B - Tested every two months (and if many new samples or significant updates are available) (95 - 85% detection rate) CLASS C - Tested every three months (85-75% detection rate) CLASS D - Tested every six months (75% or lower detection rates) For Comparison, not an actual Antivirus CLASS F - Excluded from future testing (read notes) Notes, comments, remarks, FAQ and everything else. McAfee Endpoint Protection for Malware Family (by year) # Malware Sample Type MD5 Hash Avast 9.0 Intego VirusBarrier X8 10.8 Norman 3.0.7664 ESET 6.0 Sophos 9 F-Secure 1.0 Kaspersky Security 14 G Data AntiVirus for Mac Dr Web 9.0.0 Avira ClamXav 2.6.4 (web version) Norton 12.6 (26) Comodo Webroot 8 Thirtyseven4 Total Security eScan 5.5-7 iAntivirus 1.1.4 (282) ProtectMac 1.3.2 - 1.4 BitDefender 2.30 - 3.0.6681 McAfee Internet Security for Mac* AVG AntiVirus for Mac Dr Web Light 6.0.6 (201207050) Max Secure Antivirus MacBooster X-Protect Gatekeeper Intego VirusBarrier 2013 10.7 Intego VirusBarrier X6 VirusBarrier Express 1.1.6 (79) Panda Antivirus 1.6 Bitdefender (App Store) 2.21 MacKeeper 2.5.1 - 2.8 (476) Panda Antivirus 10.7.6 Trend Micro Titanium 3.0 McAfee Security 1.2.0 (1549) Norton 11.1.1 (2) Trend Micro Smart Sur. 1.6.1101 McAfee VirusScan for Mac 8.6.1 FortiClient 5.0.6.131 Quick Heal Total Sec 1.0 MacScan 2.9.4 McAfee Virex 7.7 (163) Magician 1.4.3 Vipre 1.0.51 Mac Malware Remover 1.1.6 MD5 Hash Mac 1 Price -> Free $39.99 (Internet
    [Show full text]
  • Q3 Consumer Endpoint Protection Jul-Sep 2020
    HOME ANTI- MALWARE PROTECTION JUL - SEP 2020 selabs.uk [email protected] @SELabsUK www.facebook.com/selabsuk blog.selabs.uk SE Labs tested a variety of anti-malware (aka ‘anti-virus’; aka ‘endpoint security’) products from a range of well-known vendors in an effort to judge which were the most effective. Each product was exposed to the same threats, which were a mixture of targeted attacks using well-established techniques and public email and web-based threats that were found to be live on the internet at the time of the test. The results indicate how effectively the products were at detecting and/or protecting against those threats in real time. 2 Home Anti-Malware Protection July - September 2020 MANAGEMENT Chief Executive Officer Simon Edwards CONTENTS Chief Operations Officer Marc Briggs Chief Human Resources Officer Magdalena Jurenko Chief Technical Officer Stefan Dumitrascu Introduction 04 TEstING TEAM Executive Summary 05 Nikki Albesa Zaynab Bawa 1. Total Accuracy Ratings 06 Thomas Bean Solandra Brewster Home Anti-Malware Protection Awards 07 Liam Fisher Gia Gorbold Joseph Pike 2. Threat Responses 08 Dave Togneri Jake Warren 3. Protection Ratings 10 Stephen Withey 4. Protection Scores 12 IT SUPPORT Danny King-Smith 5. Protection Details 13 Chris Short 6. Legitimate Software Ratings 14 PUBLICatION Sara Claridge 6.1 Interaction Ratings 15 Colin Mackleworth 6.2 Prevalence Ratings 16 Website selabs.uk Twitter @SELabsUK 6.3 Accuracy Ratings 16 Email [email protected] Facebook www.facebook.com/selabsuk 6.4 Distribution of Impact Categories 17 Blog blog.selabs.uk Phone +44 (0)203 875 5000 7.
    [Show full text]
  • Consumer Security Products Performance Benchmarks (Edition 2) Antivirus & Internet Security Windows 10
    Consumer Security Products Performance Benchmarks (Edition 2) Antivirus & Internet Security Windows 10 January 2020 Document: Consumer Security Products Performance Benchmarks (Edition 2) Authors: J. Han, D. Wren Company: PassMark Software Date: 13 January 2020 Edition: 2 File: Consumer_Security_Products_Performance_Benchmarks_2020_Ed_2.docx Consumer Security Performance Benchmarks 2019 PassMark Software Table of Contents TABLE OF CONTENTS ......................................................................................................................................... 2 REVISION HISTORY ............................................................................................................................................ 3 REFERENCES ...................................................................................................................................................... 3 EXECUTIVE SUMMARY ...................................................................................................................................... 4 OVERALL SCORE ................................................................................................................................................ 5 PRODUCTS AND VERSIONS ............................................................................................................................... 6 PERFORMANCE METRICS SUMMARY ................................................................................................................ 7 TEST RESULTS ................................................................................................................................................
    [Show full text]
  • Ten Strategies of a World-Class Cybersecurity Operations Center Conveys MITRE’S Expertise on Accumulated Expertise on Enterprise-Grade Computer Network Defense
    Bleed rule--remove from file Bleed rule--remove from file MITRE’s accumulated Ten Strategies of a World-Class Cybersecurity Operations Center conveys MITRE’s expertise on accumulated expertise on enterprise-grade computer network defense. It covers ten key qualities enterprise- grade of leading Cybersecurity Operations Centers (CSOCs), ranging from their structure and organization, computer MITRE network to processes that best enable effective and efficient operations, to approaches that extract maximum defense Ten Strategies of a World-Class value from CSOC technology investments. This book offers perspective and context for key decision Cybersecurity Operations Center points in structuring a CSOC and shows how to: • Find the right size and structure for the CSOC team Cybersecurity Operations Center a World-Class of Strategies Ten The MITRE Corporation is • Achieve effective placement within a larger organization that a not-for-profit organization enables CSOC operations that operates federally funded • Attract, retain, and grow the right staff and skills research and development • Prepare the CSOC team, technologies, and processes for agile, centers (FFRDCs). FFRDCs threat-based response are unique organizations that • Architect for large-scale data collection and analysis with a assist the U.S. government with limited budget scientific research and analysis, • Prioritize sensor placement and data feed choices across development and acquisition, enteprise systems, enclaves, networks, and perimeters and systems engineering and integration. We’re proud to have If you manage, work in, or are standing up a CSOC, this book is for you. served the public interest for It is also available on MITRE’s website, www.mitre.org. more than 50 years.
    [Show full text]
  • Release Notes
    ESAP 2.6.2 Release Notes SDK Version: Mac and Windows 3.6.9026.2 (V2 Unified + V3) Noteworthy changes: Starting ESAP 2.6.1, each release contains additional files in preparation of new features that will be enabled in the next major release of SA and IC. ESAP 2.6.2 and Junos Pulse Secure Access/Access Control Service Compatibility Chart: This ESAP package can be installed on the following Junos Pulse Secure Access/Access Control Service software versions. o SA 8.0Rx o SA 7.4Rx o SA 7.3Rx o SA 7.2Rx o SA 7.1Rx o SA 7.0Rx o SA 6.5Rx o UAC 5.0Rx o UAC 4.4Rx o UAC 4.3Rx o UAC 4.2Rx o UAC 4.1Rx o UAC 4.0Rx o UAC 3.1Rx Note: The ESAP package may install and function without any errors on older releases however as the install has not been tested, we recommend that it be used only on the above versions of software releases. Support has been added for the following products in ESAP2.6.2 Windows OS Antivirus Products [Comodo Group] COMODO Antivirus (7.x) [McAfee, Inc.] McAfee Endpoint Security Threat Prevention (10.x) [Trend Micro, Inc.] Trend Micro Worry Free Business Security Agent (19.x) Antispyware Products [Comodo Group] COMODO Antivirus (7.x) [McAfee, Inc.] McAfee Endpoint Security Threat Prevention (10.x) [Trend Micro, Inc.] Trend Micro Worry Free Business Security Agent (19.x) Firewall Products [Comodo Group] COMODO Firewall (7.x) [McAfee, Inc.] McAfee Endpoint Security Firewall (10.x) [Trend Micro, Inc.] Trend Micro Worry Free Business Security Agent (19.x) Mac OS Antivirus Products [F-Secure Corp.] F-Secure Anti-Virus for Mac (0.x) Support has been removed for the following products in ESAP2.6.2 Mac OS Antivirus Products [SPAMfighter] VIRUSfighter (7.x) Issues Fixed in ESAP2.6.2 OPSWAT issues fixed: 1.
    [Show full text]
  • EXABEAM SECURITY MANAGEMENT PLATFORM INTEGRATIONS Inbound Data Sources for Log Ingestion and Service Integrations for Incident Response
    EXABEAM SECURITY MANAGEMENT PLATFORM INTEGRATIONS Inbound Data Sources for Log Ingestion and Service Integrations for Incident Response The more data sources you have in your security incident and event management (SIEM), the better equipped you are to detect attacks. And the more security orchestration and automation response (SOAR) connections you have between your SIEM and your IT and security systems the quicker LIMITLESS SCALE WITH FLAT, PREDICTABLE PRICING you can respond. Every log and every security event matters. Not retaining your log data can create security blinds spots that prevent Exabeam Security Management Platform (SMP) has compliance or leave your organization vulnerable to attack. approximately 350 integrations with IT and security products Exabeam is designed to scale without penalizing you for the to help your analysts work smarter - providing inbound amount of data you ingest. Our flat pricing model is based integrations with data sources from vendors to easily on the number of users and devices in your environment, allow you to ingest as much data as possible; and SOAR not data volume. integrations with 3rd party vendors to help you automate and orchestrate your security response. CENTRALIZED SECURITY AUTOMATION AND ORCHESTRATION WITH 3RD PARTY INTEGRATIONS EXTENSIVE DATA SOURCES Exabeam Incident Responder integrates with approximately Exabeam ingests data from approximately 300 different 70 third party IT and security products. These integrations IT and security products to provide security analysts with help your analysts to gather evidence and attach them as the full scope of events. Exabeam Data Lake, Exabeam artifacts to incidents or quarantine affected users and assets Advanced Analytics and Exabeam Entity Analytics ingest logs until incidents are mitigated.
    [Show full text]
  • Release Notes
    ESAP Release Notes Build Published February’ 2017 1.0 Document Version Contents Introduction 3 Interoperability and Supported Platforms 3 Noteworthy Changes 3 ESAP 3.0.7 and Pulse Connect Secure/ Pulse Policy Secure Compatibility Chart 3 Support has been added for the following products in ESAP3.0.7 4 Support has been removed for the following products in ESAP3.0.7 Error! Bookmark not defined. Issues Fixed in ESAP3.0.7 6 Upgrade Issues in ESAP3.0.7 7 Known Issues/Limitations in ESAP3.0.7 7 Documentation 8 Documentation Feedback 8 Technical Support 8 Revision History 8 ESAP 3.0.7 Release Notes Introduction V2 Unified + V3 SDK Version: Mac and Windows 3.6.11098.2 V4 SDK Version: Windows 4.2.1009.0, Mac 4.2.804.0 V3V4 Adapter Version: Windows 4.2.984.0, Mac 4.2.134.0 Note: The SDK embedded in this ESAP version has been tested and qualified to interoperate with an extensive list of endpoint security applications covering most products listed in the supported products list. Interoperability and Supported Platforms Please refer to the ESAP Supported Platforms Guide for supported versions of browsers and operating systems in this release. Noteworthy Changes Pulse Secure introduced support for consuming the latest OPSWAT SDK Version 4 in 8.2R5 PCS and PPS 5.3 R5 PPS release. o OPSWAT SDK’s are bundled within our Endpoint Security Assessment Plugin (ESAP). From ESAP 3.0.3 onwards, OPSWAT V4 SDK for Windows and Mac are packaged alongside existing V2 and V3 SDKs. o Uploading ESAP 3.0.3 or Later on PCS 8.2R4 and below or PPS 5.3R4 and below release will continue to install and leverage the older Version 2 and Version 3 OPSWAT SDKs.
    [Show full text]
  • Macintosh HD:Users:Shared:Dd:4Work
    Case Study Major U.S. university boosts infrastructure efficiency Improved security leads to better system performance With over 20,000 students and 5,000 employees, this major U.S. university offers more than 150 undergraduate, master’s, and doctoral degrees. Industry Education Headquarters Southwestern U.S. Employees 4,000-5,000 (IT staff, 100+) THE CHALLENGE Results The large research-focused university relies on open networks to support learning and - Reduced security collaboration among students, professors, and researchers internally and with other administrative time from organizations worldwide. With this openness comes increased vulnerability to cyberattacks. 15-20 hours to 2-3 hours per The university previously relied on Avast but found it difficult to manage endpoints from a week central management cluster. The solution also consumed significant memory resources, slowing computers and prompting numerous trouble calls to the IT support team. In addition, - Decreased endpoint Avast often missed infections and compromised systems, and offered limited technical memory footprint by 90 support to resolve these issues. percent - Improved virtualization THE SOLUTION density To find a long-term solution to security challenges, the university conducted extensive proof- - Avoided $15,000 purchase of- concept testing of Bitdefender, Avast, Kaspersky, Comodo, and Malwarebytes security solutions. of 5-6 servers “Bitdefender killed the competition,” the security administrator says. “It offered umbrella protection across all our endpoints, including Windows, Linux, Apple, and VMware. The product doesn’t consume a lot of memory resources and is simple to use. Compliance with the PCI payment standard also was a big win for Bitdefender.” The university replaced Avast with Bitdefender GravityZone to protect 7,000 Windows, Apple and Linux desktop computers, 200 physical servers, and 500 VMware virtual machines (VMs).
    [Show full text]
  • Mcafee Virusscan Enterprise Protect Your Desktops and File Servers from Malicious Threats
    DATA SHEET McAfee VirusScan Enterprise Protect your desktops and file servers from malicious threats Keeping networks free from a wide range of threats—viruses, worms, rootkits, and Trojans— Key Advantages is more challenging than ever. Whether your organization is a global enterprise with full-time security staff or a small or medium-size business, McAfee® VirusScan® Enterprise software Unbeatable malware detection and removal ensures that your endpoint servers, desktops, and laptops remain free from malware. Protect your files from viruses, worms, rootkits, Trojans, and other threats. McAfee VirusScan Enterprise software combines techniques. With port blocking, file-name blocking, antivirus, antispyware, firewall, and intrusion prevention folder/directory lockdown, file share lockdown, and Proactive protection from zero- technologies to proactively detect and remove malware. infection trace and block, you can stop many new and day attacks Proactive protection against new It reduces the cost of managing outbreak responses, unknown malware files cold. and unknown buffer-overflow stops zero-day threats, and mitigates the window of Proactive Protection from Attacks exploits that target vulnerabilities in vulnerability—the time between the discovery of a Microsoft applications vulnerability and when fixes are deployed. Plus, with McAfee VirusScan Enterprise software is the industry’s first anti-malware software to offer patented intrusion Leverage McAfee GTI McAfee VirusScan Enterprise software, you have The worldwide presence of McAfee prevention with application-specific buffer-overflow the flexibility to detect and block malware based on Labs enables McAfee VirusScan your business needs: on access, on demand, or on a technology. Now, you can protect your users Enterprise software to leverage schedule.
    [Show full text]
  • Bitdefender Total Security
    USER'S GUIDE Bitdefender Total Security Bitdefender Total Security User's Guide Publication date 12/16/2019 Copyright© 2019 Bitdefender Legal Notice All rights reserved. No part of this book may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopying, recording, or by any information storage and retrieval system, without written permission from an authorized representative of Bitdefender. The inclusion of brief quotations in reviews may be possible only with the mention of the quoted source. The content can not be modified in any way. Warning and Disclaimer. This product and its documentation are protected by copyright. The information in this document is provided on an “as is” basis, without warranty. Although every precaution has been taken in the preparation of this document, the authors will not have any liability to any person or entity with respect to any loss or damage caused or alleged to be caused directly or indirectly by the information contained in this work. This book contains links to third-party Websites that are not under the control of Bitdefender, therefore Bitdefender is not responsible for the content of any linked site. If you access a third-party website listed in this document, you will do so at your own risk. Bitdefender provides these links only as a convenience, and the inclusion of the link does not imply that Bitdefender endorses or accepts any responsibility for the content of the third-party site. Trademarks. Trademark names may appear in this book. All registered and unregistered trademarks in this document are the sole property of their respective owners, and are respectfully acknowledged.
    [Show full text]