NewsroomPhoto

NEWSROOM

Press Releases

Headlines

Events

Webinars/Podcasts

Industry Resources

ForeScout Trumps Cisco and 11 Other Network Access Control Vendors in Network World Clear Choice Test

ForeScout Technologies' CounterACT Further Simplifies Network Access Control by Detecting and Blocking Rogue Wireless Access Points


CounterACT 5.1 Capitalizes on Existing Wired Network to Defend Against Rogues; Simplifies Policy Management, Lowers TCO

Cupertino, Calif. — Jan 30, 2006 —ForeScout Technologies, the leading provider of clientless Network Access Control (NAC) solutions, today announced a significant update to its flagship product, CounterACT™ , with a 5.1 version release. This update significantly enhances CounterACT's ability to detect and disable rogue wireless access points deployed at any location on an enterprise network over the wire, effectively eliminating an increasingly common vulnerability in enterprise networks. CounterACT secures wired and wireless networks transparently by ensuring that unknown devices and endpoints that are non-compliant with the network security policies cannot gain access to critical infrastructure or sensitive information assets. ForeScout's security platform seamlessly integrates into existing network environments without requiring additional equipment, ensuring simple deployment and lowering the total cost of network ownership.

"ForeScout's clientless NAC solutions greatly increase network security while simplifying the deployment and management processes," said T. Kent Elliott, CEO of ForeScout Technologies. "With seamless integration to 95% of the switches in use today, there is no need to ‘rip and replace' existing equipment. Adding the ability to detect and shut down rogue wireless access points is yet another example of our commitment to customers to protect against all attack sources."

CounterACT is a network security device that provides clientless network access control NAC and Intelligent Intrusion Prevention™ by monitoring traffic entering and exiting the protected network segment. Once a network policy violation, self-propagating malware, or an intelligent hacker has been identified, CounterACT can automatically restrict or deny access to the network, block the threat or suppress propagation. Multiple CounterACTs can be distributed across an enterprise and share malicious code threat alerts and policy violations, creating a uniform layer of security at all protected network segments. Additionally, CounterACT provides an ongoing network vulnerability assessment to identify and mitigate passive threats found throughout the LAN.

New features in CounterACT 5.1 include:
  • Rogue wireless detection over the wire
    CounterACT can detect and disable a rogue wireless access point deployed at any location on the network without the need for additional RF equipment. This neutralizes another prevalent attack mechanism and further strengthens the breadth of network security policies that can be created and automatically enforced.

  • Managing the unmanaged
    CounterACT 5.1 ensures maximum security and business continuity by enabling an in-depth interrogation of unknown/unmanaged endpoints, prior to connecting to the network, without the need for an intrusive software agent or manual inspection and processing by IT staff. Endpoints found to be non-compliant can be allowed baseline access as defined by policy, necessary to perform job tasks to ensure productivity with minimal disruption.

  • Plug-in and third-party tool management
    CounterACT 5.1 streamlines network policy enforcement by providing a centralized management interface to all plug-ins installed on appliances distributed throughout the enterprise, including switch integration (e.g., Cisco), helpdesk (e.g., Remedy), patch management (e.g., PatchLink), firewall (e.g., Checkpoint) and VPN (e.g., Cisco VPN3K). In addition, CounterACT 5.1 features an extended API to allow remote monitoring and management of the appliances by third-party utilities.

  • 802.1x integration
    CounterACT 5.1 expands the integration capabilities of ForeScout's security platform by seamlessly integrating into any network environment with full or partial 802.1x deployment. This allows CounterACT to leverage the existing infrastructure to define and enforce policies, authentication, remediation, and VLAN assignment, not requiring the wholesale upgrade of existing network equipment.

  • Self-remediation
    Depending on what is discovered during the initial and subsequent endpoint scans, CounterACT 5.1 integrates with the PatchLink remediation system to ensure that users can immediately self-correct issues that may be preventing their access to the network without IT intervention.

"As employees and contractors increasingly access critical information assets via both internal, wireless, and VPN connections, ensuring each device is properly authorized is a nightmare," says Mike Rothman, President and Principal Analyst of Security Incite. "Network Access Control is a promising technology to simplify the enforcement of access and authorization policies, but winning solutions must integrate transparently into the existing infrastructure and not adversely impact the user experience."

Pricing and Availability
CounterACT 5.1 is available immediately and begins at a starting price of $12,995.

About ForeScout Technologies, Inc.
ForeScout's clientless network access control (NAC) solutions enable customers to implement and enforce network access policies of both managed and unmanaged devices in both a pre and post connect mode to gain complete control over network security without disrupting end-user productivity. ForeScout's flagship product, CounterACT, combines network access control and signature-less intrusion prevention in a single network appliance that interrogates and enforces controlled access of every device while seamlessly integrating with any existing IT infrastructure. ForeScout's NAC is completely transparent and enables enterprises to tailor enforcement to match the exact level of each policy violation, eliminating disruptions during device interrogation. Today, Fortune 500 corporations and government agencies have deployed ForeScout appliances globally controlling access to their networks and resources, defending against hackers and self-propagating malware, and ensuring business continuity. ForeScout's headquarters are located in Cupertino, California.

###
top
Print Page PRESS CONTACTS:

Corporate Contact
Nancy Renzullo
ForeScout Technologies
408.213.3194
pr@forescout.com

Media Contact
Samantha Leggat
Lux Communications
925.447.5300
samantha.leggat@earthlink
.net

Free White Papers

"Network Access Control (NAC) Enforcement and the Role of the Client"

More White Papers

View Webinars

"Deploying Network Access Control without Disruptions" featuring Mike Rothman, Security Incite

More Webinars

Product Datasheets

Download Datasheet Download: ForeScout's Network Access Control Solution Brochure

More Datasheets

Acclaim

"It's well known that complexity is the enemy of security, so any product that can add a layer of security in a very simple way, with virtually no administrative overhead, is worth a look."

J.P. Vossen, Technical Editor, Information Security

© 2008 ForeScout Technologies. All rights reserved.