Integration of Macmon NAC with Splunk – Network Security Leader expands New Strategic Partnerships
Christian Bücker, Managing Director of macmon secure GmbH on the news: “Our growing number of technol-ogy partnerships with leading national and international partners offers important added value for our customers. The exchange of critical data between the systems significantly increases the level of security and makes it easier for administrators to control and manage their network.”
macmon NAC reports compliance incidents to Splunk
Compliance incidents are critical for network administrators for several reasons. If an endpoint is threatened by mal-ware or is not on the current patch level, this is a violation of corporate policy. A product from one of macmon’s technology partners detects this violation and transmits it to macmon, which may then isolate the endpoint from the network and notify an administrator, depending on the configuration. Once the threat is eliminated, this status is usually transmitted to macmon and the endpoint is automatically transferred back to the network. For compliance changes, macmon not only processes these but also transmits them in real time to Splunk, which displays them in graphical form. This gives network administrators a real-time overview of current compliance incidents on the corporate network at all times.
macmon NAC transmits network sessions to Splunk
In addition to a comprehensive overview of compliance incidents, the integration between Splunk and macmon provides a dashboard that displays current and terminated network sessions, whose metadata is transmitted to Splunk at their start and end. This provides an informative overview of which network devices were used for the most endpoint logins, or how many network sessions were started in a given period of time.
macmon NAC transmits RADIUS authentications to Splunk
Metadata about the authentication mechanism used, such as SNMP or RADIUS, is also transmitted with the network sessions. This data is clearly visualized on the Authentication Dashboard.
Configuration in Splunk
The macmon Monitor app is now available on Splunk’s app store Splunkbase for convenient download and installation.
For further information, visit: www.macmon.eu
Twitter: https://twitter.com/macmon_EN
YouTube: www.youtube.com/user/macmonsecure
LinkedIn: https://de.linkedin.com/…
The experienced IT experts have been offering manufacturer-independent, BSI-certified solutions since 2003. These solutions protect heterogeneous networks from unauthorized access through immediate network transparency. macmon is quick and easy to implement and offers considerable added value for network security. macmon can be integrated with other security solutions from international technology partners, such as endpoint security or firewall. Customers obtain an immediate network overview with graphical reports and topology. In addition, macmon offers customers and partners an extensive training program and 24/7 support from Germany. This makes macmon a key IT component in the areas of digitization, BYOD or intent-based networking.
macmon secure GmbH
Alte Jakobstr. 79-80
10179 Berlin
Telefon: +49 (30) 2325777-0
Telefax: +49 (30) 2325777-200
http://www.macmon.eu
Geschäftsführer
Telefon: +49 (30) 23257770
E-Mail: christian.buecker@macmon.eu
Telefon: +49 (30) 2325777-0
E-Mail: sabine.kuch@macmon.eu