The SRA Platform SRA End Point Control
IT departments of small- to medium-sized businesses are increasingly embracing Bring Your Own Device (BYOD) initiatives. With many employees and partners connecting their own devices to the corporate network, it’s more important than ever for organizations to ensure these endpoints don’t become conduits for harmful malware. While few SSL VPN vendors even offer end point control for smaller organizations, Dell™ SonicWALL™ End Point Control (EPC) for the Secure Remote Access (SRA) Series delivers enterprise-class device identification and interrogation features to small and medium-sized businesses. For mobile devices, administrators can configure security policies that provide best-in-class, context-aware authentication which grants access only to trusted devices and authorized users. Mobile devices are interrogated for essential security information such as jailbreak or root status, device ID, certificate status and OS versions prior to granting access. Windows, Mac OS and Linux laptops and desktops are also interrogated for the presence or absence of security software, client certificates, and device ID. Devices that do not meet policy requirements are not allowed network access and the user is notified of non-compliance. This greatly reduces the chances of malware entering the network from non-IT-managed devices.
One-click Secure Intranet File Browse and On-Device Data Protection.
With the Mobile Connect app, you can protect company data at rest on mobile devices. Authenticated users can securely browse and view allowed intranet file shares and files in the app, while administrators can establish and enforce mobile application management policies to control whether files viewed can be opened in other apps, copied to the clipboard, printed or cached securely within the Mobile Connect app. This allows administrators to isolate business data from personal data stored on the device and reduces the risk of data loss. In addition, if the user’s credentials are revoked, content stored in the Mobile Connect app is locked and can no longer be accessed or viewed.
Easy, flexible device profiling.
For laptops and desktops, Dell SonicWALL End Point Control enables verification of the presence or absence of antivirus,anti-spyware and personal firewall software on the endpoint device from leading vendors such as McAfee®, Kaspersky Lab®, Symantec®, Computer Associates®, Sophos® and many others. It simplifies granular endpoint protection by allowing administrators to set up Windows, Mac OS or Linux device profiles from a comprehensive predefined list.
Robust device identification.
EPC provides enterprise-class verification of endpoint criteria, such as domain membership and OS version, and verifies the presence of a client certificate on the endpoint. The extensive device identification criteria help to tie the authorized user to specific devices as allowed by the IT department or administrator.
Multiple device profile types.
Allow and Deny device profiles include a customizable Deny message. If the endpoint device matches a Deny device profile, the user is presented with an appropriate message and given the chance to resolve the security issue on the endpoint device in order to gain network access. For instance, the user can receive a message with instructions to update the anti-virus and anti-spyware software in order to access the network. Device profiles can be enforced at the Global, User Group or User level.
Upon launching NetExtender, an EPC Dynamic Linked Library (DLL) is dynamically provisioned to the endpoint device, optimizing the client footprint on the device.
Administrators have the ability to tie a Windows DeviceID to a user by checking the device hard drive serial number via EPC interrogation and comparing this against information stored in Active Directory or LDAP.
Granular endpoint policy criteria.
EPC for SRA Series gives IT administrators the flexibility to confirm endpoint status based on:
For mobile devices:
- Jailbreak or root status
- Device ID
- Certificate status
- OS versions
For laptops and desktops:
- Personal firewall
- Custom applications