ConSentry Networks Joins Microsoft's Network Access Protection Program; ConSentry's Secure LAN Controller™ Enforces NAP Policies with In-Line, Secure Networking System

Business Wire, Oct 17, 2005

MILPITAS, Calif. -- ConSentry Networks, a leading provider of secure networking solutions for LANs, today announced it has joined the program for Microsoft's (Nasdaq:MSFT) Network Access Protection technology, a comprehensive platform infrastructure that allows system administrators to monitor and control computer access to corporate networks based on compliance to health policy as well as update non-compliant computers. E[acute accent]As the industry's first system to provide full visibility into and control over the network admission and ongoing activity of users once they've been authenticated to access an enterprise local area network (LAN), ConSentry's Secure LAN Controller (SLC) products enforce roles-based policies to thwart unauthorized access to enterprise LAN resources. In addition, these simple-to-deploy and manage systems effectively contain the spread of malicious software in real-time. Operating as an in-line, "snap-in" device, the SLC leverages existing network infrastructure and identity management systems to significantly augment and preserve previous security investments. E[acute accent]ConSentry is integrating its CS-2400 and CS-1000 Secure LAN Controllers (SLC) with Microsoft's Network Access Protection technology to ensure end users comply with corporate health and security policies before being allowed access to an enterprise LAN and authorized resources. The SLC can quarantine end users that do not have valid statement of health credentials by isolating them to a restricted network for remediation. In addition, the SLC can restrict user access to only those applications requiring remediation, thereby delivering a second level of control to the quarantine process. E[acute accent]"Bringing together vendors with complementary core competencies in network security is vital to making Microsoft's Network Access Protection technology pervasive," said David Passmore, Research Director with Burton Group. "The Network Access Protection program's ability to attract strategic vendors underscores the importance of embracing a best-of-breed approach to securing enterprises. ConSentry's addition to Network Access Protection program is significant because they integrate user visibility, access control and malware containment in a single appliance that operates within the network infrastructure. This is complimentary to end point security solutions, which are key to applying a comprehensive network security approach embraced by Microsoft's Network Access Protection technology." E[acute accent]ConSentry also provides DHCP Quarantine Enforcement in IT environments using Microsoft's Network Access Protection technology. While issuing a new DHCP address requires a statement of health certificate, it is difficult to ensure that a client has received a legitimate IP address from a valid DHCP server because malicious users can spoof a valid IP address manually. ConSentry eliminates this security breach as the SLC keeps stateful information on every DHCP request. Unless the IP address came from a valid DHCP server, access can be denied in real-time. E[acute accent]"Through strategic partnerships with industry leaders across a variety of security disciplines, our Network Access Protection program will deliver comprehensive, end-to-end solutions that protect corporate assets, control the spread of viruses and ensure policy compliance," said Steve Anderson, senior director, Windows Server Division, Microsoft Corp. "The addition of ConSentry Networks to the program provides a LAN-based secure networking approach capable of operating within the network fabric to control and secure user access." E[acute accent]"ConSentry's active participation in Microsoft's Network Access Protection program is a strategic component of our LAN Control Alliance Program," said Jon Shalowitz, director of product marketing and alliances with ConSentry Networks. "Our Secure LAN Controller product family will provide network-based enforcement capabilities along side Microsoft's Network Access Protection technology, which will enable enterprises to avoid prohibitively expensive upgrades to 802.1x switches." E[acute accent]For more information about Network Access Protection, visit www.microsoft.com/nap.> E[acute accent]About ConSentry Networks

E[acute accent]ConSentry Networks secures enterprise LANs with a purpose-built system that protects enterprise LAN's at disruptive price/performance levels. ConSentry's solution leverages its breakthrough, patent-pending silicon architecture to continuously identify all LAN traffic and enforce user access to authorized resources and applications at wire-speed, in real-time. Backed by blue-chip venture capital firms that include Accel Partners, INVESCO Private Capital and Sequoia Capital, ConSentry is headquartered in Milpitas, California. For more information, visit the company's web site at www.consentry.com. E[acute accent]ConSentry Networks, Secure LAN Controller, the ConSentry Networks logo and LANShield are trademarks of ConSentry Networks Inc., for use in the United States and other countries. All other product and company names herein may be trademarks of their respective holders.