IDG News Service - IBM plans to release updates to two products that tighten integration between its Tivoli product and Cisco Systems Inc.'s Network Admission Control (NAC) technology, according to a statement from the company.
Tivoli Security Compliance Manager Version 5.1 and Tivoli Provisioning Manager Version 2.1 have new "autonomic" features that will reduce the damage and disruption to businesses caused by viruses, worms and vulnerable software. Both products will now integrate with Cisco's Secure Access Control Server (ACS), allowing organizations to deny network access to insecure or virus-infected systems, IBM said.
Compliance Manager is software that can inspect devices attempting to connect to a network, flagging systems that don't adhere to a corporate security policy. The product can assess issues such as whether antivirus software is up to date or whether the computer operating system is running the latest software patches. That information can now be used by Cisco's ACS to quarantine machines deemed insecure, said Ric Telford, director of architecture and development at IBM's Autonomic Computing group.
Provisioning Manager allows administrators to fix noncompliant devices to conform to security policies. Administrators can use workflow features in Provisioning Manager to automate tasks such as installing operating system or antivirus software updates, IBM said.
The release of new versions of Compliance Manager and Provisioning Manager delivers on a promise made by both companies in February, when they announced a "global security initiative" to improve the security of network infrastructure. IBM promised to join the NAC program and begin working on a software agent that will tie Tivoli to ACS. In October, the companies announced the updates to Compliance Manager and Provisioning Manager, which are now available to the public.
"These products will ensure compliance of devices as they come onto the network and allow remediation if devices are not in compliance," Telford said. "This release closes the loop of security problem detection and remediation automatically and limits the need for human intervention."
Cisco has steadily built support for NAC with security software vendors of all stripes in recent months. Companies such as McAfee Inc., Trend Micro Inc. and Computer Associates International Inc. already offer NAC-compliant products.
On Monday, security vendors StillSecure and Whole Security Inc. said they would join the NAC Program. Louisvile, Colo.-based network security vendor StillSecure said it will integrate its Safe Access endpoint security compliance offering with NAC components such as the Cisco Trust Agent and Cisco Secure Access Control Server. Austin-based Whole Security, which makes behavior-based threat-detection technology for servers and PCs, said its Enterprise Edition Always-On product will beintegrated into NAC.
Free Insider GuideCopyright © 1994 - 2012 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.
