Digital Engineering Firm Enhances the Security of Its Wireless Network Connectivity
Digital engineering firm Silicon Image wanted to enhance the security of its network by increasing and enforcing compliance requirements for users who wirelessly connected to its network. Windows Server® 2008 was the logical choice after previously using Internet Authentication Service (IAS). The firm partnered with Microsoft Gold Certified Partner PC Professional to implement the new and improved security-related features.
Business Needs
Silicon Image generates $320 million in annual revenue by implementing architecture and semiconductors in the consumer electronics and personal computing markets to securely store, distribute, and present high-definition content. Its 620 employees collaborate through a mixed operating system environment (Windows® and Linux) using 50 servers from various sites. Many of those network users—employees, vendors, and company guests—connect to the Silicon Image network through wireless connections, an invaluable tool for campus-wide access to the Silicon Image network.
Previously, Silicon Image used IAS technology in Windows Server® 2003 to authenticate wireless access to its network and Enterasys network tools for further network security. However, it was concerned about who was accessing its network and the security of the local laptop configurations. Silicon Image wanted to enhance network security by gaining more control over who connected wirelessly to its network and by enforcing stricter policies for wireless connections to the network. It also needed an affordable solution that integrated well within its mixed server environment, with its Enterasys security tools, and eventually with the UNIX clients it plans to add to the environment.
Solution
Silicon Image evaluated solutions from Enterasys, another Microsoft Certified Partner. Although the Enterasys solution is still an integral part of the client’s solution, Silicon Image ultimately decided that Windows Server 2008 was the next logical step after IAS. The security enhancements in Windows Server 2008 (available when deployed with Windows Vista and Windows XP SP3) were of particular interest to Silicon Image for focusing on manageability, security compliance, and policy-driven access features.
Network Policy Server (NPS) enables Silicon Image to centrally configure and manage its network policies with the following three features: RADIUS server, RADIUS proxy, and Network Access Protection (NAP) policy server. With NPS, Silicon Image can now authorize and authenticate network connections through a variety of network access servers, including IEEE 802.1X authenticating switches and wireless access points, virtual private network (VPN) servers, dial-up servers, and computers running Windows Server 2008 with Terminal Services Gateway (TS Gateway).
Benefits
Besides the ease of implementation, Silicon Image benefits most from the new and improved security in Windows Server 2008. It can now be confident that computers connecting wirelessly to its network must first meet certain security requirements. According to Silicon Images, the ability to control the software and security level of systems as they authenticate to a wireless network is a critical benefit.
With Windows Server 2008, they can also easily configure separate roles by computer, block access, or enable restricted access to the network based on the client computer’s software level. Silicon Image has several Windows Vista clients in production, which are authenticating well with Network Admission Control (NAC) policy.
“Windows Server 2008 was surprisingly more robust and complete over Windows Server 2003. Our pre-implementation lab testing and validation was very smooth, without any road blocks. This paved the way for us to create a project plan and perform the site implementation without disruption to the client’s end-user environment,” says Neil Pearlstein, Executive VP of Sales and Marketing for PC Professional.
Windows Server 2008 also enables Silicon Image to do the following:
* Check the health and status of roaming laptops and verify compliance of unmanaged home computers (desktop and laptop).
* Determine the health of visiting laptops and enforce application layer data inspection by checking for malware. Simplify administrative tasks such as system updates and application installations.
* Check policy-based quality of service to prioritize and manage the sending rate of outgoing network traffic and filtering of outgoing and incoming traffic.
* More securely extend and protect information and applications to business partners.
* Reduce the risk of unauthorized access through strong authentication.
* Reduce the number of user accounts and repositories that need to be managed.
* Securely manage user accounts and information outside the data center.
Windows Server 2008
Windows Server 2008, with built-in Web and virtualization technologies, enables you to increase the reliability and flexibility of your server infrastructure. New virtualization tools, Web resources, and security enhancements help you save time, reduce costs, and provide a platform for a dynamic and optimized datacenter. Powerful new tools like IIS 7.0, Server Manager, and Windows® PowerShell, allow you to have more control over your servers and streamline Web, configuration, and management tasks. Advanced security and reliability enhancements like Network Access Protection and the Read-Only Domain Controller option for Active Directory Domain Services harden the operating system and help protect your server environment to ensure you have a solid foundation on which to build your business.
Business Needs
Silicon Image generates $320 million in annual revenue by implementing architecture and semiconductors in the consumer electronics and personal computing markets to securely store, distribute, and present high-definition content. Its 620 employees collaborate through a mixed operating system environment (Windows® and Linux) using 50 servers from various sites. Many of those network users—employees, vendors, and company guests—connect to the Silicon Image network through wireless connections, an invaluable tool for campus-wide access to the Silicon Image network.
Previously, Silicon Image used IAS technology in Windows Server® 2003 to authenticate wireless access to its network and Enterasys network tools for further network security. However, it was concerned about who was accessing its network and the security of the local laptop configurations. Silicon Image wanted to enhance network security by gaining more control over who connected wirelessly to its network and by enforcing stricter policies for wireless connections to the network. It also needed an affordable solution that integrated well within its mixed server environment, with its Enterasys security tools, and eventually with the UNIX clients it plans to add to the environment.
Solution
Silicon Image evaluated solutions from Enterasys, another Microsoft Certified Partner. Although the Enterasys solution is still an integral part of the client’s solution, Silicon Image ultimately decided that Windows Server 2008 was the next logical step after IAS. The security enhancements in Windows Server 2008 (available when deployed with Windows Vista and Windows XP SP3) were of particular interest to Silicon Image for focusing on manageability, security compliance, and policy-driven access features.
Network Policy Server (NPS) enables Silicon Image to centrally configure and manage its network policies with the following three features: RADIUS server, RADIUS proxy, and Network Access Protection (NAP) policy server. With NPS, Silicon Image can now authorize and authenticate network connections through a variety of network access servers, including IEEE 802.1X authenticating switches and wireless access points, virtual private network (VPN) servers, dial-up servers, and computers running Windows Server 2008 with Terminal Services Gateway (TS Gateway).
Benefits
Besides the ease of implementation, Silicon Image benefits most from the new and improved security in Windows Server 2008. It can now be confident that computers connecting wirelessly to its network must first meet certain security requirements. According to Silicon Images, the ability to control the software and security level of systems as they authenticate to a wireless network is a critical benefit.
With Windows Server 2008, they can also easily configure separate roles by computer, block access, or enable restricted access to the network based on the client computer’s software level. Silicon Image has several Windows Vista clients in production, which are authenticating well with Network Admission Control (NAC) policy.
“Windows Server 2008 was surprisingly more robust and complete over Windows Server 2003. Our pre-implementation lab testing and validation was very smooth, without any road blocks. This paved the way for us to create a project plan and perform the site implementation without disruption to the client’s end-user environment,” says Neil Pearlstein, Executive VP of Sales and Marketing for PC Professional.
Windows Server 2008 also enables Silicon Image to do the following:
* Check the health and status of roaming laptops and verify compliance of unmanaged home computers (desktop and laptop).
* Determine the health of visiting laptops and enforce application layer data inspection by checking for malware. Simplify administrative tasks such as system updates and application installations.
* Check policy-based quality of service to prioritize and manage the sending rate of outgoing network traffic and filtering of outgoing and incoming traffic.
* More securely extend and protect information and applications to business partners.
* Reduce the risk of unauthorized access through strong authentication.
* Reduce the number of user accounts and repositories that need to be managed.
* Securely manage user accounts and information outside the data center.
Windows Server 2008
Windows Server 2008, with built-in Web and virtualization technologies, enables you to increase the reliability and flexibility of your server infrastructure. New virtualization tools, Web resources, and security enhancements help you save time, reduce costs, and provide a platform for a dynamic and optimized datacenter. Powerful new tools like IIS 7.0, Server Manager, and Windows® PowerShell, allow you to have more control over your servers and streamline Web, configuration, and management tasks. Advanced security and reliability enhancements like Network Access Protection and the Read-Only Domain Controller option for Active Directory Domain Services harden the operating system and help protect your server environment to ensure you have a solid foundation on which to build your business.
posted by PC Professional at
5:56 PM
0 Comments
