Re: Client application to control access to untrusted networks?

[Fabien Vincent <fabvincent () gmail com>]

Hi,

For "location aware" client software, check around Juniper Infranet
Controller (IC) and Odyssey Client (formely Funk Odyssey 802.1x
client/supplicant). They built a solution with IDS/IPS and FW to
enforce policies on all 802.1x clients/servers which is really
sympathetic ! I'm not sure you can enforce Windows themselves, but I
know they're fully compatible with TCG's Trusted Network Connect
(TNC), which is also supported by many vendors.

After this, I know that SkyRecon clients support also deep Wifi rules
and hotspots timed access, with perhaps some VPN features access
(allow computers to connect to no IPs address and close network access
except VPN IPsec access is kind of things you can do to enforce
policies into Windows Kernel).

I think you need to search around term "EndPoint Security" to be more
larger and deeper in your analysis !

Rgds,
-------------------------------------------------------------------
FV

On Tue, Sep 22, 2009 at 22:22,  <louder () hotmail com> wrote:
> Hello,I am just looking to see if anyone can provide any experiences and/or recommendations of software to be 
> installed on clients that is "location aware" and can enforce certain ACL's or network policies. i.e. Symantec, 
> McAfee, Cisco?
>
> My scenario and what I am trying to do is with my users laptops, currently we do not allow them to connect to any 
> public wireless networks. Ofcourse this is something that I am being pressured on allowing. We would like to be able 
> to force a VPN client to load as soon as the mobile device running Windows XP connects to a public "hot spot" and if 
> the VPN connection fails to disconnect the system from that network. It would be an IPSEC VPN from either Cisco or 
> Juniper.
>
> Thank you!
>
> Brandon L.
>
> ------------------------------------------------------------------------
> Securing Apache Web Server with thawte Digital Certificate
> In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, 
> how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, 
> purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for 
> set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital 
> certificates.
>
> http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
> ------------------------------------------------------------------------

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------