Unauthorized (ROGUE) Endpoints
ENDFORCE Informant identifies and eliminates unauthorized rogue endpoints to ensure the security of your network.
Malicious users connecting to a static IP address or intelligent trusted users connecting an unauthorized device such as a wireless access point, phone, or printer can be a significant threat to network security.
These rogue endpoints that are trying to access the network constitute a small percentage of overall network use, but because of the method of access and unknown intent, these endpoints pose a significant threat. The damage to a network from one rogue endpoint could be immense.
ENDFORCE Informant, a companion product to ENDFORCE Enterprise, passively monitors all IP communications and all internal networks. Low-level ARP monitoring allows all IP communications to be detected. Even if an endpoint evades DHCP or 802.1x network-based enforcement, the endpoint cannot communicate and spread infections throughout the network without using ARP. The silent monitor detects and alerts administrators so they can quickly react to the presence of these high risk endpoints on the network.
