Endpoint Access Manager™

Endpoint Access Manager includes a Management Server, a Management Console and Endpoint Agents. The Management Server is deployed at a central location within the enterprise network. The Endpoint Agents are deployed seamlessly to the endpoints using standard enterprise distribution tools. The Management Server intelligently communicates security policies to the Agents. The Agents enforce the policies, monitor endpoint activities and communicate back to the Management Server relevant data.

The Management Console offers robust tools to display and report endpoint activities, including:

• Real-time notifications
• Audit logs stored in corporate databases
• Customized web-based reports

Typical ControlGuard Endpoint Access Manager Implementation

The Management Console displays endpoint configurations and reveals connected devices and media interfaces. Any I/O activity at the endpoint is immediately logged and displayed by the Management Console and is subjected to the appropriate policy enforced by the Endpoint Agent. The policy can be limited to monitoring only, or to permitting a specific action on a specific set of devices by specific users.

The Endpoint Agents are intelligent and independent modules that remain active even when the endpoint is not connected to the network. They are protected from attacks by processes, services or other drivers, and cannot be bypassed by endpoint users, even if they have administrative rights on the endpoint.

Endpoint Access Manager tightly integrates with directory services, enterprise management systems, application infrastructure and distribution systems enabling easy deployment and minimal administration overhead.