I have downloaded an evaluation version...so my response is on the
evaluation; we have not got the real thing yet.
1. It has to be installed on a server that already has HTTPS capability,
Read the docs very carefully, there are some security change required on
the server directory that you will install it on.
2. Very Good product, it will stop infected PC from entering your network,
if you configured that way...
It will not clean the infected PC but you can define a 3rd Party product
that the user can download and clean the PC.
You can force the user to use an Integrity Browser, this way all work done
thru the Integrity Browser will be "Cleaned" after session is completed.
Reports are lacking (other than reading a log file!, as far I can see)
3. To work effectively, it should be installed on the Ingress point...such a
firewall...I am evaluating it on a separate server right now.
4. No, it uses the same server where it is installed such as
https://myserver/sre/config.asp
5. Licensing (I am not sure), check with a sales rep...I assume on PC that
will be scanned.
6. Not at this time, maybe in the future...I would hope so. As they may
integrate the product, since Checkpoint purchased Zone Labs Inc.
Just remember that this product can run on multiple firewall vendors and
servers right now.
Regards,
Sal.
-----Original Message-----
From: Alexander Simbun [mailto:alexals AT KKIPC DOT COM]
Sent: Wednesday, November 24, 2004 4:22 AM
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: [FW-1] Integrity Clientless Security (ICS)
Dear all,
Check Point recently released a product targetted for
endpoint security for customer. It is called Integrity Clientless Security
(ICS). According to Check Point, this product able to protect enterprises
from threats on PCs entering via Web-based applications and gateways, such
as Microsoft Outlook Web Access, SSL VPNs or extranets, without requiring
client software installation. I have a few question regarding this product:
1. How does this product work in a network?
2. Anyone have use this product in their organisations or
companies? If yes, what is your humble opinion about this
product?
3. Where should this product installed on? On servers that's
running web services and so on, or on the firewall ?
4. Does this product required Integrity server to manage these?
5. How about the licensing? Does Check Point provides unlimited
licenses or individual?
6. Is the firewall management server able to manage these
product?
Thanks for your explaination.
Regards,
Alex
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
