CyberGatekeeper with DNAC
March 01, 2007
£2,650 for server software; £26 per seat for 500+ users
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: An ability to restrict non-compliant machines to the network
- Weaknesses: Greater configuration would increase administration overhead
- Verdict: A product with some serious strengths, but in-depth training is needed to truly grasp the configuration interface
CyberGatekeeper with dynamic network access control (DNAC) was one of the more challenging products to work with in the review process. The application is feature-rich, with the ability to develop polices for primarily Windows-based systems that need to meet policy criteria in order to gain access to the network. The application consists of three components: a policy manager, a policy server and a reporting server.
The reporting and most of the management is conducted through a web interface. Typically, this product is installed by InfoExpress engineers to ensure the client has a greater depth of understanding.
From a pure security standpoint, this solution has some advantages in the ability of the client to restrict the level of access to the network an endpoint (workstation) will have. The policy manager is the component of the application that builds the executable, which is then installed on the client machine, and the application runs as a service.
Once the application is installed, it is possible to alert the user, through pop-up messages, as to why the endpoint is not in compliance with the policy. Network access is given based on a series of network rules that appear very similar to IPTables rules or early Cisco router configuration rules. If an endpoint is non-compliant, limited access is granted to the network. The configuration interface is complex, although you get used to it.
CyberGatekeeper installed very easily on a standard Windows 2003 server from a single executable. During the process, an SQL database server will be installed if the current server is not already running one. An additional internet information server (IIS) is configured for most management and reporting tasks.
Documentation comes in the form of a single PDF document that is indexed and searchable. It is clear and easy to understand, but some sections could benefit from more detailed screenshots.
Assistance is available through several phone support options that include both office-hours and 24/7 support. In addition, email and online support options are on offer, which include access to a password-protected knowledge base.
The pricing for the CyberGatekeeper product is at the upper end of this group.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Information Security Risk Manager, £45-55k + bens
Infosec People - West Midlands, England, Coventry
SOC Analyst, Aldershot, £55-63k + benefits
Infosec People - England, Aldershot, Hampshire
Security Architect, Cardiff - to £70k Basic
Infosec People - Cardiff, Wales
Interim CISO (Chief Information Security Officer) - Cyber Security Director
CYBER EXECS - London (Central), London (Greater)
Sign up to our newsletters
SC Magazine UK Articles
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Met Police grab suspect with phone unlocked to get hold of data
- Cyber-security must reflect risk not just regulation
- Data centres are on the move - where will they end up?
- The information security implications of M&A deals
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- 9.2 million medical records for sale on darkweb
- Microsoft Office 365 hit with massive Cerber ransomware attack, report
- Over 400,000 phishing sites have been detected each month in 2016
- TalkTalk customers urged to get routers swapped over hacker fears
- Report: Mirai 'is just the tip of the iceberg'
- Avalanche takedown involved searches in 40 countries
- India Supreme Court calls on tech giants to curb sexual assault, cyber-crime