Last time, we presented four ways to manage client computers to protect corporate IT assets from damage caused by leaked information, computer virus infections, and illegal access by having administrators, not employees, properly manage client computers by:
Now, in the second installment, we'll give you concrete advice on how to use JP1 to implement security solutions for client PCs.
If employees connect their own PCs to the company network to do work, the network might be infected with a virus, causing widespread damage and the leakage of company information stored on the employee's PC. JP1 allows you to flexibly manage client PCs by setting up both a simple system in which you can limit which computers have access to the company network and a quarantine network. You can use JP1 to create an environment that satisfies your requirements.
Preventing unauthorized client PCs from connecting to the company network in a simple system
JP1/Network Monitor automatically prevents unauthorized client PCs from connecting to the company network. You can use JP1/Network Monitor to register computers that are allowed to use the company network so that connections by unauthorized computers are automatically prevented. You only have to install management software on one computer in the subnet. No client software is required, and you can continue to use existing networks as you always have. We recommend JP1/Network Monitor for preventing the leakage of information by limiting which computers can connect to the company network, and by detecting and preventing connections by unauthorized computers in simple systems.
If you also install JP1/Network Monitor - Manager, you can:
JP1/Network Monitor - Manager main window
Blocking computers that violate the security policy
When a client computer connects to the company network, JP1 automatically determines whether the computer violates the security policy, and then prevents connection to the network by any computer that does. For example, client computers that have no anti-virus software installed, or to which the latest security patches have not been applied, can be prevented from connecting to the company network. In addition, the required anti-virus software and the latest security patches can be automatically installed on client computers that have insufficient security, and then those computers can be connected to the company network again. This means that only client computers determined to be safe according to an already specified security policy are allowed to connect to the network, while client computers determined to be dangerous are relegated to a quarantine network to be corrected and restored.
Please refer to the Introduction to Quarantine System leaflet for more details on system configuration and related products.
