Many enterprises and service providers maintain large and growing networks which support a range of different devices. A solution which centrally collates management data enables them to deploy, monitor and maintain their network cost-effectively.
Keeping track of a network security infrastructure requires the implementation of procedures for supervising, maintaining and monitoring appliances. The features on NETASQ Centralized Manager help to save a considerable amount of time in the daily management of these operations.
Features relating to security policy provide a large number of possibilities including: global policy management, group or appliance-based policies, automatic configuration updates and even the management of disparate objects.
Central policy management provides for the automatic deployment of modifications across multiple sites. The VPN configuration wizard simplifies the processes of creating and updating tunnels. NETASQ Centralized Manager automatically calculates and deploys VPN configurations.
Deploying a large number of security appliances involves a string of actions from the moment of purchase. NETASQ Centralized Manager manages appliances by taking into consideration their life cycles and by offering various types of services for each appliance status.
The upstream preparation of an appliance, integrated into the global policy framework, guarantees an operational configuration from the moment the appliance is plugged in.
A centralized administration system is the most effective way to manage frequent tasks such as software updates and saving configuration information. The ongoing maintenance of appliances is simplified through task scheduling functions.
The monitoring console map and the different graphs present a clear vision of all installed appliances.
Monitoring features ensure tracking of the operational status of appliances as well as the definition of customized indicators. Real-time alerts offer immediate information on major incidents.
Role based management of administrators ensures the implementation of an operations team and allows monitoring the traceability of their activities. The task management function offers dual role allocation options:
- By network device, ensuring confidentiality for the most sensitive appliances
- By software module, enabling allocation by type of task (maintenance, monitoring, network configuration, security policy
To deliver an efficiently managed network, you need to ensure that tasks are equally distributed amongst the administration team members. The allocation may be based on the type of activity, such as configuration, maintenance and supervision, or on restrictions on types of equipment.
Restrictions may be applied simultaneously in both areas. This can also be facilitated through restricting the level of activity of network appliances. Centralizing the administration of large and diverse networks requires the manager to deploy security policies with clear guidelines on confidentiality and role management functionality.
NETASQ’s centralized administration solutions are designed to address the problems inherent in deploying, managing and maintaining several connected network appliances.
Configuration and deployment
Centralizing configuration information enables administrators to gain a comprehensive view of security policy. The same configuration data can be used for several network devices, reducing both the workload and the risk of mistakes.
The concept of global and local configuration enables network managers to define an overall security policy, while delegating the allocation of specific rules at the local level to an individual site or network device. This allows the enterprise to implement a global policy without sacrificing the necessary flexibility which is required to manage particular cases.
A centralized administration system is the most effective way to manage frequent tasks such as software updates and saving configuration information. A record of all configurations is stored centrally providing a single point from which to manage and restore the network. In addition, licenses and software updates can be distributed from a central site to multiple network appliances.
Network infrastructure monitoring
The administrative overviews of your network map present a clear picture of all the appliances and other installed devices, including routers, switches and servers. Monitoring device status, simultaneous connections, high availability and other parameters enables you to see the status of each installed device.
NETASQ’s event management service enables administrators to investigate potential problems and to create up to date status reports. These reports detail all network activity, providing a clear picture of security levels.