“The Access Management space is ripe for an appliance-based solution. Much like the firewall market progressed from software on a server to appliances, the Access Management market will likely move in this direction as well, as ease of deployment and maintenance are key customer requirements in this space.”

-- Earl Perkins
Gartner Research

Collateral Links:

Identisphere Overview

Introduction to Identisphere

ID-Audit Data Sheet

Introduction to ID-Audit

ID-Enforce™

Controlling Internal Access

Controlling who has access to the network and specific network resources is a crucial element of network security. With the ubiquitous access that the Internet has enabled and the expanding definition of who is considered an “internal” user, access control has become increasingly difficult to maintain. In addition, being able to verify that someone is who they say they are and then grant them access based on their user privileges is also a key part of anyone’s network security.

Enforcing Network Access Using Identity

Organizations don’t want to make configuration changes to their existing architecture when they deploy a security solution. Applied Identity’s security solutions have a robust set of flexible network deployment options that allow enterprises to easily integrate into new or existing networks without the need to ‘rip and replace’ existing infrastructure.

ID-Enforce is an Identity Access Gateway that uses firewall-like technology to tie access policies with user network identity and network resources for authorization and audit of network activities. ID-Enforce sit’s inline, close to the resources it protects, which ensures that all users must pass through it in order to access data and applications. Identity Access Gateways can be deployed as a Layer 2 or Layer 3 security device, therefore minimizing the time and effort of reconfiguring the network.

How it Works

ID-Enforce can be deployed in either an audit or audit and enforce mode. The audit capability is non-intrusive used to baseline user activity and create a log of resource usage within ID-Audit. The information collected forms the basis used to create network access policies for enforcement. Users are either granted or denied network access based upon the policies assigned to their group role, the application or service they are accessing or as individual users.

ID-Enforce can be deployed just to protect critical assets or as a cost effective end-to-end solution

Critical Resource Protection Adding ID-Enforce to the infrastructure enables administrators to protect specific resources, forcing users to authenticate themselves by UserID as they move from network to network, thereby reducing the risk of unauthorized access to sensitive information.
Access Enforcement ID-Enforce is an internal network access control solution that can be used to protect different segments of the network such as finance, HR and engineering. Many organizations have a “flat” or open network that allows all users – including employees, guests and contractors - to view all the resources at the network level, leaving them open to potential attack or misuse.
RSA Integration Applied Identity integrates with RSA’s two factor authentication to provide both application and network access authentication – strengthening the overall security and integrity of the network. Download the PDF and learn more

ID-Enforce works with RSA SecureID to provide a rock solid security solution

ID-Enforce is currently undergoing Common Criteria EAL2 Certification.