BeyondTrust UVM20 Security Management Appliance
Strengths: Very fast and highly scalable.
Weaknesses: A bit pricey for smaller organisations and takes some time to master.
Verdict: Excellent choice for larger organisations.
The BeyondTrust UVM20 Security Management Appliance is the preconfigured hardware offering of Retina CS Enterprise Vulnerability Management. While we tested their hardware appliance, Retina CS is also available as a standalone software installer for deployment flexibility. The physical device we received encompasses both parts of the Enterprise Vulnerability Management suite. The first part is the network scanner, which checks the network for vulnerabilities. The second part is Beyond Insight, which is the central management point for all network scanners organisation wide. Using this technology, vulnerability scanning can be scaled out to encompass the entire enterprise and still be managed from one place.
BeyondTrust sent us their physical device offering for review. After we removed it from the box, we installed it in our rack with the provided mounting hardware. We connected a keyboard, monitor and mouse as well as power and turned it on. Using the front panel of the device, we configured the management interface settings and connected to the web-based management interface. Here, we configured a few basic environment settings, such as the administrator password and time settings. After that, we set up our license keys and the system performed an automatic update.
Beyond Insight is extremely powerful but takes quite some time to master fully. The web interface is very detailed with many statistics and graphs throughout. Enterprise Vulnerability Management is an extremely powerful tool. In addition to its vulnerability scanning capabilities, Retina CS can also perform privilege management for windows out of the box and can be expanded to perform privilege management on UNIX and Linux, as well as password management networkwide.
Retina CS was easy to get working in our environment. After we configured our network settings in the scanner, we let it run, which only took a few minutes. From here, we were able to generate reports based on the scanners findings. The reports that Retina CS produced were extremely professional looking with graphs and other visual aids throughout.
In addition to the device, we also received a quick-start booklet and a rack-install guide. The quick-start guide was a brief packet which covered basic setup. The documentation was clear and included screen shots throughout.
For the physical appliance that we received, in addition to a 1,000-asset license, the cost of the unit was £16,252.95. This included the first year of licensing and hardware maintenance costs as well. BeyondTrust does its licensing based on the number of assets to scan, each of which can have more than one IP address. The license must be renewed yearly, which costs 25 percent of the first year's cost and includes standard-level support service. Platinum assistance is also available for an additional 20 percent. Standard aid includes eight-hours-a-day/five-days-a-week telephone, email, web and chat help. Customers who purchase platinum are afforded the same options as standard but are given access 24/7.
BeyondTrust Retina CS is a powerful network security tool but it is slightly more pricey than other alternatives. The initial £16,252.95 price tag is steep, but the superb performance and scalable nature of this product means that fewer can be used to cover an entire worldwide network. This, combined with its privilege and password management capabilities make it a good value for the price.
Prices are US-based and therefore indicative only.