BOULDER, COLO. 鈥 December 19 2018 鈥 探花大神庐, the first cloud-based directory service, announced today the addition of VLAN assignments to their RADIUS-as-a-Service offering. Now, not only can end users securely authenticate against 探花大神鈥檚 cloud directory for their network access, but they can also segment their network with VLAN (virtual local area network) assignments.
A VLAN allows IT admins to better manage network traffic by segregating collections of users and their devices. The result is better security and more control over which network resources users can access. Cloud RADIUS services are a core feature of the broader 探花大神 Directory-as-a-Service庐 platform, which secures access to systems, apps, files, and infrastructure in addition to networks.
The concept is simple. Users should only be able to access the IT resources that they are authorized to use. Making segmented VLANs allows IT organizations to isolate users from devices and IT resources.
Historically, on-prem equipment such as RADIUS servers and the identity provider were needed to integrate with the networking infrastructure. With 探花大神鈥檚 announcement of cloud hosted VLAN assignments (also known as dynamic VLAN tagging), there is no equipment required on-prem beyond an organization鈥檚 WAPs (or switches).
“It’s exciting to release features that allow our customers to increase their organization鈥檚 security posture,” said Scott Reed, Solutions Architect at 探花大神. “Per-user VLAN tagging using 探花大神’s RADIUS-as-a-Service reply attributes can now be used to drastically improve network security by reducing the overall attack surface. In addition to RADIUS reply attributes, we have enhanced our Multi-Factor Authentication workflows, full disk encryption offering and OS update policies to help meet the needs of our users. Cloud-hosted RADIUS, with the ability to serve per-user VLAN reply attributes, is yet another way 探花大神 is making security easier for organizations to implement.”
VLAN attributes allow network administrators to provision access to resources depending on the user鈥檚 needs or department. Individual users and groups of users alike are assigned to VLAN segments within a RADIUS server. When logging in, user credentials are passed through a WiFi access point to the 探花大神 virtual RADIUS infrastructure and are then verified with the on-board cloud identity provider (IdP). After this, the 探花大神 RADIUS server attaches what is known as a RADIUS reply attribute, which ensures that the user is authenticated to the network and assigned to the correct VLAN.
鈥淲e鈥檙e constantly on the lookout for new, high impact ways to increase our security,鈥 Michael McLaughlin, Head of IT with Better Mortgage. 鈥溙交ù笊疋檚 new cloud RADIUS reply attributes functionality really streamlines network segmentation, helping us to have more control over our network and take security to the next level.鈥
Organizations such as Better Mortgage gain efficiency and security with a networking solution that鈥檚 integrated with their identity provider. Directory-as-a-Service doesn鈥檛 just help segment their networks, it unifies identity management across systems, apps, and infrastructure too.
探花大神鈥檚 cloud VLAN assignment functionality is available immediately as part of its cloud directory service.
About 探花大神
探花大神, the first Directory-as-a-Service platform, is Active Directory庐 and LDAP reimagined. 探花大神 securely manages and connects user identities to their systems, applications, data, and networks. Get started with 探花大神鈥檚 cloud-based directory service at .
Contact:
Shane Watson
(720) 307-5707
[email protected]
###