A10 Networks - ID Series
Using a modular, agent-less approach, ID Series connects into multiple user directories, operating systems and networking devices, enabling a series of advanced identity management functionality. The ID Series approach has drawn praise for providing multiple identity services on a single appliance, vastly reducing operational complexity and installation time.
Core Modules
- User Self-Service Web Portal for Password Management
- Identity Tracking with IP-to-ID
- Enterprise RADIUS Authentication Server
- Centralized User Provisioning & Reporting
- Guest Access & Authenticated DHCP
Often the ID Series appliances are deployed for a single solution or project. Bearing this in mind, the ID Series offers compelling value as each appliance is competitively priced as if just a single solution is used. With simplified licensing, customers have the option of using all the modules at no additional charge for unparalleled return on investment. Competing solutions can be 3-20x the cost and deployed in months, or years, rather than hours or days like ID Series.
Solutions:
- Multi Device User Removal
- User ID Logon Tracking
- IP to User ID Lookup
- RADIUS via LDAP
- High Performance RADIUS
- Guest User Access
- Rogue User identification
- Cross Platform User Provisioning
- Global User Account View
- VPN Authentication with Remote Password Reset
IDENTITY TRACKING FEATURING IP-TO-ID
Resolve anonymous network identities to user ID instantly to solve real-time issues and aid after the fact investigation. For years, IT staff have been hampered by the inability to quickly find who is using a network IP address or hardware MAC address, both in real-time or when investigating historical data months or years after the fact.
While visibility has increased into IP-centric networks and protocols, user visibility has lagged far behind. Often IT staff are faced with real-time events where it is critical to identify the user and take action. Likewise as events are often investigated after the fact, knowing an issue created by 10.16.99.88 six months ago and 192.168.10.13 today are from the same user could be key to security investigations or network diagnostics.
Networking and security products can provide the "what" and "where" and IP-to-ID provides the "who" across all primary authentication points.
Leveraging IP-to-ID, ID-to-IP and MAC-to-IP to Deliver Identity Aware Networks
Whether the service is viewed as analogous to DNS, but for resolving users, not machines, to network address or caller ID for the network, the result is an identity aware network with unprecedented visibility.
The Power of Actionable Identity
Actionable Identity is a powerful new concept illustrating the power of the Unified Identity Management solution.
Using IP-to-ID to identify a malicious user, an administrator can instantly disable the user account from multiple back-end systems with one click due to the power within the User Provisioning core module.
For the first time this ensures the source can be effectively quarantined quickly, rather than creating the same issue by moving to another machine, thus augmenting existing network security devices.
Partner Applications
The ID Series has also provided an API in XML or C that can allow organizations and network or security vendors to access the current or historical identity information.This allows the information to be available directly in partner applications or even internal customer applications.
Key Benefits at a Glance
- A10 provides a fast, accessible, single location for user IP-to-ID identification and user system usage tracking
- Save hours and improve compliance auditing scores, in real time and years after the fact
- IP-to-ID user ID resolution in seconds from a simple Web interface or embedded in a partner application
- ID-to-IP translation to show all devices a user has logged into
- MAC-to-IP translation ensures even with just a MAC address an identity can be resolved
- IP and MAC tracking supported from almost any authentication source or network device
Provides the complete identity picture unlike NAC (Network Address Control) systems. The ID Series does not operate in-line, and does not miss a single event on connected system.
Core Modules
- User Self-Service Web Portal for Password Management
- Identity Tracking with IP-to-ID
- Enterprise RADIUS Authentication Server
- Centralized User Provisioning & Reporting
- Guest Access & Authenticated DHCP
Often the ID Series appliances are deployed for a single solution or project. Bearing this in mind, the ID Series offers compelling value as each appliance is competitively priced as if just a single solution is used. With simplified licensing, customers have the option of using all the modules at no additional charge for unparalleled return on investment. Competing solutions can be 3-20x the cost and deployed in months, or years, rather than hours or days like ID Series.
Solutions:
- Multi Device User Removal
- User ID Logon Tracking
- IP to User ID Lookup
- RADIUS via LDAP
- High Performance RADIUS
- Guest User Access
- Rogue User identification
- Cross Platform User Provisioning
- Global User Account View
- VPN Authentication with Remote Password Reset
IDENTITY TRACKING FEATURING IP-TO-ID
Resolve anonymous network identities to user ID instantly to solve real-time issues and aid after the fact investigation. For years, IT staff have been hampered by the inability to quickly find who is using a network IP address or hardware MAC address, both in real-time or when investigating historical data months or years after the fact.
While visibility has increased into IP-centric networks and protocols, user visibility has lagged far behind. Often IT staff are faced with real-time events where it is critical to identify the user and take action. Likewise as events are often investigated after the fact, knowing an issue created by 10.16.99.88 six months ago and 192.168.10.13 today are from the same user could be key to security investigations or network diagnostics.
Networking and security products can provide the "what" and "where" and IP-to-ID provides the "who" across all primary authentication points.
Leveraging IP-to-ID, ID-to-IP and MAC-to-IP to Deliver Identity Aware Networks
Whether the service is viewed as analogous to DNS, but for resolving users, not machines, to network address or caller ID for the network, the result is an identity aware network with unprecedented visibility.
- IP-to-ID - Provides instant identity resolution allowing organizations to find out who is on the network with the unique ability to correlate an IP address to a user identity, instantly.
- ID-to-IP - Provides additional information on where a user has logged in, showing all such information in a single view, vastly aiding security teams to pinpoint a user’s activity and network teams to correlate disparate events to a user.
- MAC-to-IP - Ensures even with just a MAC address the machine can be traced back to a user account.
- Historical Data - Information from historical data solves a problem that was near impossible in the past.
- Actionable Identity - allows user quarantining in critical situations helps isolate issues and compliments existing security products.
- Integrates with all leading data sources, from Directories and Operating systems to Syslog feeds or file based logs. This includes LDAP, Microsoft Active Directory, Firewalls, VPNs and more.
The Power of Actionable Identity
Actionable Identity is a powerful new concept illustrating the power of the Unified Identity Management solution.
Using IP-to-ID to identify a malicious user, an administrator can instantly disable the user account from multiple back-end systems with one click due to the power within the User Provisioning core module.
For the first time this ensures the source can be effectively quarantined quickly, rather than creating the same issue by moving to another machine, thus augmenting existing network security devices.
Partner Applications
The ID Series has also provided an API in XML or C that can allow organizations and network or security vendors to access the current or historical identity information.This allows the information to be available directly in partner applications or even internal customer applications.
Key Benefits at a Glance
- A10 provides a fast, accessible, single location for user IP-to-ID identification and user system usage tracking
- Save hours and improve compliance auditing scores, in real time and years after the fact
- IP-to-ID user ID resolution in seconds from a simple Web interface or embedded in a partner application
- ID-to-IP translation to show all devices a user has logged into
- MAC-to-IP translation ensures even with just a MAC address an identity can be resolved
- IP and MAC tracking supported from almost any authentication source or network device
Provides the complete identity picture unlike NAC (Network Address Control) systems. The ID Series does not operate in-line, and does not miss a single event on connected system.
Additional documentation and information