ForeScout | Access Ability

Overview

ForeScout CounterACT is a real-time network security platform that delivers dynamic visibility and control of all devices on your network. ForeScout CounterACT automatically identifies who and what is on your network, controls access to your network, measures compliance with your security policies, blocks network threats, and remediates endpoint security violations when they occur. CounterACT makes you smarter, your network more secure, and your staff less busy by automating tasks that are currently laborious.

ForeScout CounterACT employs a proven approach for IT risk management, as shown in the diagram below. Every device that accesses your network is identified, controlled, remediated (if you wish), and continuously monitored to ensure compliance and protection.

The primary solutions provided by ForeScout CounterACT are:

Network Access Control

ForeScout CounterACT for Network Access Control enables employee, guest and contractor access your network - wherever, however and whenever – without compromising your security.  CounterACT integrates with your current network, security and identity infrastructure to assure the right users and their devices gain appropriate access.  Leveraging built-in policy templates, CounterACT can automatically manage employee and guest access in a way that is seamless for those that comply and automated for those that don’t.  CounterACT is the most superior NAC solution on the market.  Don’t just take our word for it, get a 24-page, comprehensive comparative report on the leading NAC products produced by The Tolly Group.

Mobile Security

ForeScout CounterACT for Mobile Security provides real-time visibility and control for smartphones, tablets, netbooks and other corporate and personal mobile devices connected to your network.  Our solution complements/enables Wireless Access Points (WAP), Virtual Desktop Infrastructure (VDI), Mobile Enterprise Application Platforms (MEAP) and Mobile Device Management (MDM) approaches.  CounterACT can automatically identify and fingerprint managed and personal mobile devices, facility employees or guests using multiple devices, can eliminate rogue WAP, and identify malicious network activity.  With CounterACT for Mobile Security, you can let users enjoy the productivity benefits of modern handhelds while you protect your network against data loss and malicious threats.  Learn more about our CounterACT module that adds native support for iOS and Android platforms, options for CounterACT/MDM integration, and ForeScout’s cloud-based mobile device lifecycle management.

ForeScout MDM

ForeScout MDM, powered by MaaS360, includes all of the essential functionality that you need for end-to-end management of iOS, Android, Blackberry, and Windows Phone devices. ForeScout MDM integrates with ForeScout CounterACT, our flagship network security and policy automation system, to give you unified visibility and control over everything on your network. ForeScout MDM is a cloud-based solution, so deployment is quick and easy. ForeScout MDM is powered by MaaS360, a powerful cloud-based technology used by over 1200 companies around the world, and named the “Clear Choice Test” winner by Network World.

Endpoint Compliance

ForeScout CounterACT for Endpoint Compliance automatically enforces security policies for everyone and everything on your network, which helps you minimize your security risks. Because ForeScout CounterACT is agentless, it works with all type of endpoints–managed and unmanaged, known and unknown, physical, mobile and virtual. CounterACT can discover security weaknesses with your existing agent-based security systems that would otherwise go undetected.  Literally, CounterACT can find and fix endpoint violations without IT intervention – saving your organization considerable time, resources and money.

ForeScout CounterACT gives you real-time endpoint intelligence and security posture awareness. Our platform integrates with leading network, security, host-based security system (HBSS) and identity platforms to support compliance mandates. In addition, CounterACT supports the leading security information event management (SIEM) systems to provide endpoint configuration details, correlate access and compliance violations, and expedite incident response. Within CounterACT, our built-in report templates helps organizations monitor policy compliance levels, support regulatory audit requirements, and produce real-time inventory reports. As a result, CounterACT effectuates GRC initiatives and reduces auditing processes.

The ForeScout Difference

ForeScout CounterACT is dramatically easier and faster to deploy than traditional policy enforcement products. Here is why:

• One box, one day to install. Everything is contained in a single physical or virtual appliance. Setup is easy with built-in configuration wizards.
• ForeScout works with what you have. All your existing switches, routers, firewalls, endpoints, patch management systems, antivirus systems, directories, ticketing systems–ForeScout CounterACT works with them. We require no infrastructure changes or equipment upgrades.
• No software. ForeScout CounterACT is agentless, which means it works with all types of endpoints–managed and unmanaged, known and unknown, authorized and rogue. No client installation is required.
• Non-disruptive. Unlike first generation NAC products that immediately disrupt users with heavy-handed access controls, ForeScout CounterACT can be deployed in a phased approach which minimizes disruption and accelerates results. In the initial phase, CounterACT gives you visibility to your trouble spots. When you want to move forward with automated control, you can do so gradually, starting with the most problematic locations and choosing an appropriate enforcement action.
• Accelerated results. ForeScout CounterACT provides useful results on Day 1 by giving you visibility to problems on your network. The built-in knowledge base helps you configure security policies quickly and accurately.