Solution Brief. Aerohive and OpenDNS. Advanced Network Security for Retail Stores



Similar documents
Connected Store & Restaurant in a Box

White Paper. Retail Made Personal. Make the shopping experience personal, relevant, and profitable

HiveManager Client Management

Smart Mobility Platform for Retailers

solution brief ID Manager Leverage the Cloud to Simplify and Automate Enterprise Guest Management

Aerohive Client Management

Wi-Fi Security. More Control, Less Complexity. Private Pre-Shared Key

Aerohive and JAMF Software

Cloud Services Platform. Security and Availability Controls Overview

Aerohive Private PSK. solution brief

Rethink Your Branch Network Strategy

Trends in Wireless Networking for Healthcare Organizations

Tech Brief. Enterprise Secure and Scalable Enforcement of Microsoft s Network Access Protection in Mobile Networks

Seven Guidelines to Support Standardized Testing

Enterprise Buyer Guide

Cisco Advanced Malware Protection for Endpoints

How To Integrate Hosted Security With Office 365 And Microsoft Mail Flow Security With Microsoft Security (Hes)

Aerohive and Palo Alto Networks. Partner Solution Brief

How To Build A Network From Scratch

How To Secure Your Store Data With Fortinet

Simplifying Branch Office Security

AT&T. ip vpn portfolio. integrated. IP VPN solutions. for the enterprise. Communication Systems International Incorporated

Technical Note. ForeScout CounterACT: Virtual Firewall

How To Make A Network Reliable

WEBSENSE TRITON SOLUTIONS

Reduce Your Network's Attack Surface

SECURITY 2.0 LUNCHEON

DUBEX CUSTOMER MEETING

The Benefits of Cloud Networking Enable cloud networking to lower IT costs & boost IT productivity

EXTENDING THREAT PROTECTION AND CONTROL TO MOBILE WORKERS

you us MSSP are a Managed Security Service Provider looking to offer Advanced Malware Protection Services

Wireless Services. The Top Questions to Help You Choose the Right Wireless Solution for Your Business.

Copyright 2013, 3CX Ltd.

isheriff CLOUD SECURITY

White Paper. Five Steps to Firewall Planning and Design

Many network and firewall administrators consider the network firewall at the network edge as their primary defense against all network woes.

SECURE YOUR BUSINESS WHEREVER IT TAKES YOU. Protection Service for Business

ios Mobile: Setup Guide for Umbrella ios Mobile Devices

Cisco Cloud Web Security

Mitigating Web Threats with Comprehensive, Cloud-Delivered Web Security

Protecting Your Roaming Workforce With Cloud-Based Security

ThreatSTOP Technology Overview

WHAT S NEW IN WEBSENSE TRITON RELEASE 7.8

WHITE PAPER Cloud-Based, Automated Breach Detection. The Seculert Platform

Defend Your Network with DNS Defeat Malware and Botnet Infections with a DNS Firewall

WildFire. Preparing for Modern Network Attacks

10 Things Every Web Application Firewall Should Provide Share this ebook

The Advanced Attack Challenge. Creating a Government Private Threat Intelligence Cloud

Trend Micro Hosted Security. Best Practice Guide

10 Potential Risk Facing Your IT Department: Multi-layered Security & Network Protection. September 2011

V1.4. Spambrella Continuity SaaS. August 2

The evolution of data connectivity

Cisco Advanced Malware Protection. Ross Shehov Security Virtual Systems Engineer March 2016

Extending Threat Protection and Control to Mobile Workers with Cloud-Based Security Services > White Paper

The Benefits of Cloud Networking

Technical White Paper

Reasons to Choose the Juniper ON Enterprise Network

Cloud Video Conferencing. A comprehensive guide

Internet threats: steps to security for your small business

The Network and The Cloud: Addressing Security And Performance. How Your Enterprise is Impacted Today and Tomorrow

We license by the total # of users with Internet access. No, but you may contact us anytime you need to increase your license count.

Deploying NetScaler Gateway in ICA Proxy Mode

Beyond passwords: Protect the mobile enterprise with smarter security solutions

Network Virtualization Network Admission Control Deployment Guide

Mobile Device Management Version 8. Last updated:

Trend Micro InterScan Web Security and Citrix NetScaler SDX Platform Overview

Replacing Microsoft Forefront Threat Management Gateway with F5 BIG-IP. Dennis de Leest Sr. Systems Engineer Netherlands

Securing Privileges in the Cloud. A Clear View of Challenges, Solutions and Business Benefits

Technology Brief Demystifying Cloud Security

Deployment Guide for Citrix XenDesktop

Data Center security trends

10 Best Practices to Protect Your Network presented by Saalex Information Technology and Citadel Group

Enabling Secure BYOD How Fortinet Provides a Secure Environment for BYOD

CS 356 Lecture 25 and 26 Operating System Security. Spring 2013

Cisco ASA and Cloud Web Security: Best-in-Class Network Security Combined with Best-in-Class Web Security

SIP Security Controllers. Product Overview

Concierge SIEM Reporting Overview

F5 Identity and Access Management (IAM) Overview. Laurent PETROQUE Manager Field Systems Engineering, France

All can damage or destroy your company s computers along with the data and applications you rely on to run your business.

Top 10 Reasons Enterprises are Moving Security to the Cloud

Juniper Solutions for Turnkey, Managed Cloud Services

Transcription:

Solution Brief Aerohive and OpenDNS Advanced Network Security for Retail Stores

Introduction Protecting your retail business requires security for all users and devices connected to the network, regardless of their location. Many retailers need to provide guest Wi-Fi access, but they need to ensure that their guests don t become infected with malware or phishing schemes. In addition, mobile devices and apps are changing the way that customers shop and giving in-store retailers more ways to personalize and monetize customer relationships. Combining Aerohive and OpenDNS provides best-in-class Wi-Fi and network security to ensure retail store employees and guest users at retail stores are protected against modern malware and malvertising. With this combined solution, retailers can effectively implement secure guest Wi-Fi and ensure that their customers can engage with them securely through their mobile apps for loyalty programs, for example. OpenDNS delivers cloud-based network security with its Umbrella platform. Umbrella reduces the risk and impact of security breaches by blocking malicious Internet connections. Unlike antivirus or sandboxes, Umbrella blocks known and advanced threats by malicious domains or IPs. And unlike pure proxies, it contains botnet callbacks from infected devices over any port, protocol, or app. In today s highly connected and mobile world, users, whether they are employees or guests, expect to be able to have secure Wi-Fi access from wherever they are and from whatever device they are currently holding. While this convenience can often increase productivity, it also opens up a secure network to a multitude of potential issues with Bring-Your-Own-Device (BYOD) policies, possible threats to secure data from unknown applications, and increased resource requirements from IT administrators. The problem with the mobile device explosion facing security administrators and IT professionals is especially apparent in branch locations like retails stores, where often IT resources aren t available to control and contain access to the network in the same way they do at corporate. This leaves the network vulnerable to potential threats, and leads many companies to implement strict security and access policies, which might limit productivity. The Aerohive and OpenDNS Solution Aerohive and OpenDNS together allow an administrator to define policies that provide retail stores users with HQ-like levels of protection against Internet-borne threats, unwanted or illicit content, and productivity-sapping web sites and services, while allowing mission-critical, known-good traffic destined for approved sites to be whitelisted from the filtering service. When combinded with OpenDNS, Aerohive routers forward DNS traffic to the OpenDNS Umbrella service with client identity, allowing administrators to define user or group-based filtering policies, with no need for users to log in to the filtering service and no need for any client device configuration at all. Aerohive and OpenDNS provide a robust solution for ensuring security of connected clients at remote locations. Together the solution provides many benefits, including: Simplified Deployment and Security the Aerohive Branch on Demand solution is super easy to configure, install, and manage just plug the unit in and it will phone-home to find its management server and pick up the configuration automatically. OpenDNS integration is as easy as selecting a checkbox to turn on 2 Copyright 2014, Aerohive Networks, Inc.

the service, and is ideal for retail stores that want to instantly connect their employees & customers! BYOD and ieverything ready administrators can easily configure policies to define exactly which devices connected to the Aerohive branch router are subject to the network security service whether this be a retail employee s ipad or a guest s iphone, and rest assured that the same policies applied to the users at the corporate office are now enforced wherever that user is connecting from or whatever device he or she is using. Cloud-based management Both the Aerohive solution and the OpenDNS solution support cloud-based management, which allows an administrator easy access from anywhere to manage, monitor, and maintain remotely connected devices Regulatory Compliance Reporting Using the Aerohive and OpenDNS solutions ensures administrators can enforce and therefore report on regulatory compliance requirements, including features like a scheduled PCI-Compliance report to detect rogue clients and access points as well as report on user traffic and access. How It Works The OpenDNS integration within Aerohive s HiveManager network management system offers a competitive edge over most other network security and Web filtering systems as it allows retailers to map individual groups of users to separate OpenDNS policies. Until this breakthrough, all users of a network were assigned identical OpenDNS security policies. For example, if a branch of a retail chain wanted to differentiate OpenDNS policies for different types of employees, or if they wanted to allow most guests to use the catchall OpenDNS security policy, but wanted to give some premium users on the same network access to additional content, the store needed to configure separate networks with separate OpenDNS policies for each group. Configuring separate networks with separate policies was difficult to manage and added an additional layer of unnecessary complexity. Additionally, if the WAN router for an organization is on a dynamic IP addressing scheme, either an IP updater was required to constantly let OpenDNS know of the new IP scheme or someone had to do it manually. Aerohive s unique integration allows OpenDNS to apply rules based on Aerohive User Profile assignment instead. As users on a protected Aerohive network make DNS requests, OpenDNS gets from Aerohive a UPID identifier that labels the type of user making the request.this informs OpenDNS of which policy to map to each request. To implement the OpenDNS and Aerohive solution, a business subscription is required. The OpenDNS login page is located at https://dashboard.opendns.com, and looks like this: Copyright 2014, Aerohive Networks, Inc. 3

In the Aerohive HiveManager, the OpenDNS Server Settings are located under Administration HiveManager Services. Enable OpenDNS Server Settings must be checked to activate the OpenDNS integration, and the IP addresses will auto-populate. Once OpenDNS credentials have been entered, the Connection Test button should provide a success message. If one is not received, double check Internet and Firewall settings to ensure outbound HTTP/HTTPS is permitted. It is now possible to create new OpenDNS policies and map them to individual Aerohive User Profiles, as shown below. 4 Copyright 2014, Aerohive Networks, Inc.

Once Aerohive User Profiles are associated to OpenDNS policies, clicking Update will send the data to OpenDNS. OpenDNS will now display a new policy, where content filtering access levels can be selected for each profile. Copyright 2014, Aerohive Networks, Inc. 5

For any questions, please contact Aerohive Networks at opendns@aerohive.com. Summary Providing high-performance, enterprise grade networking and security in today s mobile world is key to ensuring security and productivity for all clients, regardless of where they may be in the world. Aerohive and OpenDNS make it easy to leverage the cloud to provide high quality, low-latency, secure access from a centrally managed interface. In the retail space, it s critical to provide security not only to retail store employees, but also customers traversing the retail stores as they are using guest Wi-Fi for Internet access or using a store s mobile app for the latest deals. 6 Copyright 2014, Aerohive Networks, Inc.

About Aerohive Aerohive (NYSE: HIVE) unleashes the power of enterprise mobility. Aerohive s technology enables organizations of all sizes to use mobility to increase productivity, engage customers and grow their business. Deployed in over 17,000 customers worldwide, Aerohive's proprietary mobility platform takes advantage of the cloud and a distributed architecture to deliver scalable, simplified, secure and cost-effective networks. Aerohive was founded in 2006 and is headquartered in Sunnyvale, Calif. For more information, please visit www.aerohive.com, call us at 408-510-6100, follow us on Twitter @Aerohive, subscribe to our blog, join our community or become a fan on our Facebook page. About OpenDNS OpenDNS is a leading provider of network security and DNS services, enabling the world to connect to the Internet with confidence on any device, anywhere, anytime. The Umbrella cloud-delivered network security service blocks advanced attacks, as well as malware, botnets and phishing threats regardless of port, protocol or application. Its predictive intelligence uses machine learning to automate protection against emergent threats before they can reach customers. OpenDNS protects all devices globally without hardware to install or software to maintain. For more information, please visit: www.opendns.com. Corporate Headquarters EMEA Headquarters Aerohive Networks, Inc. Aerohive Networks Europe LTD 330 Gibraltar Drive Sequel House Sunnyvale, California 94089 USA The Hart Phone: 408.510.6100 Surrey, UK GU9 7HW Toll Free: 1.866.918.9918 +44 (0)1252 736590 Fax: 408.510.6199 Fax: +44 (0)1252711901 info@aerohive.com www.aerohive.com

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information