CREDANT Enterprise Edition

Centrally Enforced Data Protection Solutions for Business

Detect: Identify and control the synchronization of data directly to rogue mobile devices from PCs or over-the-air synchronization of email from Microsoft Exchange Server.

Manage and Audit: Centralize security policy management from a single console for desktops, Notebook PCs, handhelds, USB flash drives, and CD/DVD media. CREDANT also generates an audit trail to prove that company data security rules are being enforced across all mobile devices.

Encrypt and Enforce: Securely encrypt sensitive data, while providing in-depth defense; including user authentication, controlled port access and application restrictions.

Operations and Support: CREDANT works with routine IT operations such as patch management and application upgrades and ensures that the Helpdesk can provide immediate resolution to end-user problems including forgotten passwords and data recovery.

Centralized, Transparent Data Encryption for Your Enterprise

CREDANT Mobile Guardian Enterprise Edition is based on a flexible, single-system architecture to provide powerful centralized administration of single and multi-domain environments. The solution combines policy-based encryption and enforcement, automatic device detection, authentication, auditing and reporting capabilities.

Multiple levels of access, device and end user control help ensure endpoint data security as well as audit trails for data protection compliance readiness. CREDANT data security solutions are designed to operate in the background without affecting operational performance, administrative productivity or the user experience.

With CREDANT Enterprise Edition, organizations can address their endpoint data security and compliance needs in an effective, efficient and transparent manner.

Integrated Components for a Comprehensive, Easy-to-Deploy Data Protection

CREDANT Enterprise Edition data security solutions are based on an integrated set of components to allow for streamlined deployment. This enables organizations to develop flexible, tightly integrated solutions for data protection based on their specific needs.

CREDANT Enterprise Server integrates with enterprise directories to provide a central, web-based interface for security policy definition and management. The interface supports real-time mobile device inventory, and continuous reporting of mobile device security status for data protection policy compliance. At-a-glance encryption status reports are backed by charts showing end-point “check-in” and encryption trends.

CREDANT Shield resides on mobile devices and external media to enforce mobile security policies even if the device is disconnected from the network. It enforces strong authentication, policy-based encryption, and device / end-user controls. Enhanced features include greater encryption transparency and increased flexibility for administrators implementing corporate security policies.

CREDANT Shield is available in a StandAlone Edition for Windows® version that supports devices in disconnected or non-domain environments and in an External Media Edition for Windows version when encryption of a local drive is not needed.

CREDANT Policy Proxy resides on the corporate network or DMZ to provide secure distribution of policies and policy updates from the CREDANT Enterprise Server to the CREDANT Shield. It also collects device inventory and reports back to the CREDANT Server for auditing and reporting.

CREDANT Local Gatekeeper resides on desktops and notebooks to automatically detect, protect and control locally synchronized mobile devices. It provides secure, distributed communications between CREDANT Shield and CREDANT Enterprise Server for transparent delivery and management of policy and software updates.

CREDANT OTA Sync Control (optional) enhances Microsoft Exchange Server ActiveSync to control which handhelds (includes iPhone, Symbian, Palm OS and Windows Mobile devices) can sync email, contacts, and so forth.

CREDANT Enterprise Edition Benefits

CREDANT Enterprise Edition is part of the CREDANT family of data protection products. CREDANT solutions are the only centrally managed, data-centric solutions for protecting endpoint data wherever it resides. With CREDANT Enterprise Edition, organizations gain:

  • Policy-based, centralized management for improved data security, compliance and ease of use
  • Non-disruptive data security that works with existing operational processes and does not impact the user experience
  • Proven technology, expertise and experience from the industry leader in endpoint data protection
  • Quick deployment of data protection for laptops, desktops, handhelds and external media across diverse platforms
  • Automatic audit trails that offer proof of end-to-end data security
  • Protection of data from unwarranted access, reducing risk of internal breaches
  • Support for today's diverse laptop and desktop environments, including both 32-bit and 64-bit Windows XP Professional and Vista, as well as Mac OS X

Ask for more information about CREDANT data security products and how they provide organizations with proven-effective solutions for endpoint data protection.

Key Features with CREDANT Enterprise Edition Include:

  • Multi-level access, device and end-user control
    • Flexible PIN and password parameters for handhelds and removable media
    • Integration with native authentication environments including multi-factor authentication
      • Smart Cards
      • Biometrics
      • RSA SecurID for Microsoft® Windows
    • Self-service and help-desk assisted password recovery, even when a device is disconnected from the network
    • Enhanced administrative control and options for Windows laptops and desktops
      • Ability to allow encryption only when the screen is locked
      • Increased performance and transparency of encryption
      • Simplified decryption and uninstall process for multi-user computers
    • Advanced application control on Symbian Smartphones and Windows Mobile® Pocket PCs, with the ability to create application Whitelists and Blacklists
    • CREDANT Console Shield deployment status charts
      • Charts showing current device protection status
      • Segmented bar charts showing device protection status history
      • Segmented charts showing the number of devices that have checked-in per a day over the past 90 days
    • Automatic cleanup of inactive devices for even better CREDANT Console reporting
    • Communication port controls (Bluetooth, IR, and so forth) for PDAs
    • Optional Over-the-Air (OTA) Sync Control that enforces which handhelds (includes iPhone, Symbian, Palm OS and Windows Mobile devices) can sync to Exchange ActiveSync®
    • Integration with Cisco Network Admission Control (NAC)
    • Maintain data privacy while allowing multiple users to securely share information on the same desktop or laptop
    • Allow local administrators to maintain the system while blocking access to critical end-user data
    • Flexible policy provides total end-user transparency or enable various end-user controls to help make your users part of the security solution
    • Encryption of local Security Account Manager (SAM) database and domain password hash, paging file and other important Windows and program files
    • Automatic key escrow for simple, immediate data recovery
    • Device- and user-based policies provide ultimate flexibility to secure any environment

  • Support for industry standard encryption algorithms
    • FIPS 140-2 and Common Criteria validated
      • AES 128
      • AES 256
      • 3DES
    • Blowfish

  • Broad operational compatibility
    • Compatible with automated patch management systems
    • Compatible with existing disk recovery, backup and forensic tools
    • No special system maintenance tools or procedures needed

  • Extensive support for devices, operating systems and external media
    • Notebooks, tablet PCs and desktops running:
      • Microsoft® Windows 7 32-bit and 64-bit Ultimate, Enterprise, Professional and Home Premium
      • Microsoft Windows Vista® 32-bit and 64-bit Ultimate, Enterprise, Business and Home Premium
      • Microsoft Windows XP Professional 32-bit and 64-bit Media Center and Tablet PC
      • Mac OS X v10.6 Snow Leopard, v10.5 Leopard, v10.4 Tiger for Intel-powered systems
    • Pocket PCs and Smartphones running:
      • Windows Mobile™ 6.1 Professional (Pocket PC) and Standard (Smartphone)
      • Windows Mobile 6.0 Professional (Pocket PC) and Standard (Smartphone)
      • Windows Mobile 5.0 Pocket PC and Smartphone
      • Palm OS® 5.x
      • Symbian 9.x S60 3rd Edition
      • OTA Sync Control support for iPhone
    • External media accessing data from:
      • Microsoft Windows Vista 32-bit and 64-bit Ultimate, Enterprise, Business, and Home Premium
      • Microsoft Windows XP Professional, Home, Media Center and Tablet PC
    • Enterprise server platforms
      • Windows Server 2003 Standard and Enterprise
      • Windows Server 2003 R2 Standard and Enterprise
    • LDAP support
      • Microsoft Active Directory®
      • Sun® ONE Directory Server
      • Novell® eDirectory™
    • Supported databases
      • MS SQL Server 2000, 2005
      • MS SQL Server 2005 Express Edition
  • Foreign language support and OS internationalization
    • Install the CREDANT Enterprise Server on localized systems
      • French
      • Italian
      • German
      • Spanish
    • Install the Windows Shield on Asia-Pacific (APAC) localized systems
      • Full double byte character support, including inventory and reporting
      • Support for “Worldwide English” Windows OS
      • Supports systems running Multilingual User Interface (MUI) language packs
    • European localization for Windows, Handheld and External Media Shields
      • French, Italian, German and Spanish support
      • All user interfaces automatically localized, based on the host computer's language configuration
      • Full localization of help files

Screenshots

CREDANT Enterprise Edition is based on a flexible, single-system architecture for powerful central administration of single and multi-domain environments.

Click to enlarge