Policy Enforcer network access control

Noncompliant systems that may be infected or misconfigured pose a huge risk because they can compromise systems and bring down networks. With the increase in mobile workers, partnerships, and offshore outsourcing, risk has increased. This can cost you significant time and money, system downtime, loss of reputation, regulatory fines, frustrated customers, and IT support for restoring systems.

McAfee® Policy Enforcer network access control mitigates the risk to corporate assets posed by systems that do not comply with your security policies. McAfee NAC combines powerful yet flexible policy control with a wide range of enforcement methods to protect your network. Its agent-on-demand quickly scans managed and guest systems to see if they comply with security policies and automatically blocks or quarantines noncompliant systems.

Simplify policy definition, system discovery, security and compliance assessment, enforcement, and remediation through McAfee® ePolicy Orchestrator®, its single-agent management console. From ePO™, define policies and get centralized reporting of failed compliance checks and remediation action. Automate patching of systems as they enter your network and makes remediation easier. McAfee NAC works with McAfee® Total Protection— Advanced and other third-party solutions for automated self-remediation to reduce helpdesk calls.

McAfee NAC offers broad enforcement capabilities for VPNs/LAN switches/wireless switches from a variety of vendors. It also supports devices that use Cisco® Network Admission Control. Through ePO™, Policy Enforcer provides centralized policy definition, system assessment, and remediation while Cisco NAC detects noncompliant system and enforces policy.

With McAfee NAC, you can safely extend your network to remote workers and partners without expensive large-scale hardware replacements or upgrades.

Key Features

• Discovers noncompliant systems
  Detect both managed and unmanaged systems that could cause harm to your network and its users
• Comprehensive system checks
  Quickly and easily assess the compliance of quarantined unmanaged systems with McAfee NAC's agent-on-demand
• Broad enforcement
  Get built-in enforcement for managed and unmanaged systems connected locally or remotely (LAN, WAN, IPSec, VPN, or SSL); McAfee NAC also provides integration with third-party enforcement framework methods like Cisco Network Admission Control
• Centralized management and control
  Manage and control access to your network, along with your other system security products, through a single console with McAfee Policy Enforcer and McAfee® ePolicy Orchestrator®; define policies and get centralized reporting of failed compliance checks and remediation action from the ePO™ console
• Integrates with Cisco® NAC
  Supports Cisco NAC-enabled switches, routers, and VPN gateways; McAfee NAC provides policy definition, system assessment, and remediation, and Cisco NAC offers system detection and enforcement
• Automated remediation options
  Offers automated self-remediation through McAfee Total Protection - Advanced and third-party solutions; users can also be directed to a remediation portal where the administrator can recommend specific action

McAfee Suites that include Policy Enforcer

• Total Protection Enterprise Advanced (TEA)
  Desktop, Server, Mail Server and Internet Gateway Antivirus and Antispyware protection, Spam protection on mail server and Desktop Intrusion Prevention - Plus Network Access Control security.