ITB - IT Solutions for the next generation
linkedin logo twitter logo facebook logo google+ logo

Standard IEEE 802.1X

Back to Partner
Standard IEEE 802.1X

The Institute of Electrical and Electronics Engineers (IEEE) is a global association that has committees for standardising technology, hardware and software.

Standard 802.1X is a well-developed recommendation for the secure authentication of devices in networks. macmon supports this standard and aids its introduction and implementation:

  1. Allows mixed operating modes – with or without 802.1X
  2. Allows for device locating by communication with the network switches and access points
  3. Allows integration of AD/LDAP and other identity sources
  4. Dynamic and automatic rules
  5. Easy to implement, even easier to run
  6. Group-based configuration instead of extensive rules
  7. Allows concepts for security zones to be established and implemented

Capabilities of IEEE 802.1X

The issues of guaranteeing unique authentication in both wireless and wired networks is well known. For procedures that are relatively easy to implement from a technical point of view, such as checking the MAC addresses, it is often argued that properties are too easy to falsify. For this reason, in the fundamental technology, macmon already uses more properties than just the MAC address for identification and this enables it to check system footprints (IP address, operating system, IP ports) – to falsify all of these at once demands an extremely high level of criminal energy. Yet the standard 802.1X can also go one step further than this. A RADIUS server is included for the authentication, which decides whether or not to grant access.

Various properties can be used as proof or a means of authentication – for example, the MAC address, username/password or certificate. Since access to the network is granted by the switch only after successful confirmation by the RADIUS server, there are no unused or non-secure ports, as recommended by the BSI. When granting access, additional rules can also be provided, which are then implemented by the switch. If the switch is technically capable of doing this (Layer3), a specific VLAN, defined ACLs or almost any other attributes can be assigned.

With macmon, you simplify the implementation of 802.1X many times over and, at the same time, also cover the areas of your network that are not yet compatible with 802.1X. Step-by-step implementation and mixed operation are also possible without any further problems.

The use of your existing infrastructure and your existing company identities, the intuitive and self-generating set of rules together with macmon‘s device-related and group-oriented approach, as well as a range of further simplifications, all means that a security standard that is actually complex can be successfully implemented as easily and quickly as possible. macmon does things differently.

Speak to ITB about macmon Partner Standard IEEE 802.1X licences today:
CALL for Information and Pricing