Sophos NAC Advanced provides comprehensive and easy-to-deploy enterprise-ready network access control (NAC). It allows administrators to define and centrally manage security policies to identify and isolate all non-compliant, compromised or misconfigured computers accessing the corporate network. It seamlessly integrates with existing network infrastructures and security applications from a wide range of vendors.

Comprehensive, real-time enforcement of enterprise-wide network access control:

• An installed agent provides comprehensive compliance assessment and enforcement of managed computers, both prior to and during a network session.
• A web agent provides comprehensive compliance assessment prior to network access for remote or LAN-based unmanaged computers, or on managed computers when an agent is not practical.
• DHCP enforcement protects the network from unauthorized computers connecting to the corporate LAN using an enterprise's existing DHCP infrastructure.
• IEEE 802.1x enforcement stops unauthorized computers connecting to the LAN.
• RADIUS enforcement protects the network from non-compliant laptops by providing enforcement prior to opening IPSec, SSL-VPN, or wireless connections.

Customizable central policy for all computers:

• An intuitive web interface offers extensive policy-building capabilities, flexible enforcement control and extensive reporting and alerting features.
• Administrators can define and manage unique policies for detecting operating system patches, security applications and signature updates across all computers.
• Scans can detect for installation, last engine scan date/time, signature file date/time, running detection for processes, real-time protection status, and version/value
• Administrators can choose whether unauthorized or non-compliant computers are isolated, quarantined for remediation, automatically remediated or sent alerts.
• Policies can be customized to ensure no unwanted applications are run.
• A customizable landing page provides immediate, easy-to-view NAC compliance statistics.
• Point-and-click contextual operating system patch definitions save administrators hours of configuration time.
• Simple, central policy mode control enables enforcement steps to be phased in -from Report Only, through Remediate, to Enforce - avoiding an all-or-nothing approach, and providing optimum control and ease of policy deployment during each stage of implementation.

Easy to implement with existing network infrastructures and security applications:

• A comprehensive range of predefined applications, including more than 400 security applications and over 600 OS patches, ensures Sophos NAC Advanced seamlessly interoperates with all major security vendor solutions.
• Its software-overlay architecture ensures Sophos NAC Advanced fits within the existing network infrastructure, e.g. switches, VPN concentrators, DHCP servers and enterprise user stores.
• Easy to implement, Sophos NAC Advanced does not require significant changes to existing hardware or user groups.

Comprehensive alerting, reporting and auditing:

• Powerful audit and reporting capabilities enable administrators to monitor and manage compliance, and any changes made to the policy.
• Access to real-time and historical data enables sophisticated analysis, reporting and trending information.

Industry-leading expertise 24/7:

• The Sophos 24/7 customer support operation is highly acclaimed, while SophosLabs, the global network of threat and spam analysis centers, provides a rapid response to emerging and evolving threats.

Key Benefits of Sophos NAC

• Enables easy identification and isolation of non-compliant computers
• Assesses computer compliance proactively prior to network access and periodically during the network session
• Defines security policies centrally
• Enhances ROI of existing security applications and network infrastructure
• Provides assessment options for managed and unmanaged computers with an installed agent or a web agent
• Provides flexible deployment for phased enforcement (Report Only; Remediate; Enforce)
• Simplifies the process for exempting devices (servers, routers, printers, etc) from network-based enforcement
• Reports the state of a computer's compliance over time
• Responds rapidly to new, unforeseen threats using custom application creation and enforcement
• Provides systematic enforcement of security compliance policies
• Includes 24x7x365 support for the duration of the license and Sophos can be contacted for one-to-one assistance at any time

Download a free 30-day trial of Sophos NAC

To evaluate Sophos NAC in your own environment, download the free 30 day trial.

Contact us and we will be happy to assist you with your evaluation.

Sophos NAC Licensing and Pricing

NSAi resells Sophos NAC at very reasonable prices.

Contact us for pricing on Sophos NAC.

Security Management Services

NSAi also provides a full range of architecture, engineering, implementation, and operations services surrounding Sophos NAC.