AirMagnet Enterprise is a centralized system that proactively protects WiFi networks and users from all types of threats, ensures maximum network performance and uptime and arms staff with the tools to solve problems quickly and remotely. AirMagnet Enterprise does this by going to the true source of WiFi threats and problems – the airspace itself.
The solution provides full-time automated analysis of all WiFi traffic, channels, devices, their connection state as well as optional spectrum analysis of non-WiFi devices and sources of interference. This full time view lets you get to the root-cause of any problem instead of just seeing the symptoms, while ensuring full visibility and control over the wireless boundary between your network assets and the outside world.
AirMagnet Enterprise takes action to defend the wireless environment by automatically blocking, tracing and mapping any threat in addition to an unmatched suite of event alerting, escalation, remote troubleshooting, forensic analysis, and professional PCI and compliance reporting. The end result is a unified system that keeps WiFi under your control – performing safely and meeting the needs of your users and applications.
Features
The industry’s first over-the-air smart device detection and classification provides unprecedented level of visibility and gives IT professionals the ability to optimize the WLAN for BYOD. This information enables an engineer to quickly troubleshoot and remediate any security or performance issues caused by these devices.
The industry’s first software-based sensor which runs on Windows PCs delivers basic wireless security monitoring at a very low cost structure and enables true client based performance measurement. This new flexibility to combine SSA-based sensors with hardware sensors allows users to build the wireless monitoring solution which is best optimized for their requirements and budget.
Automated Health Check provides the fastest and most accurate way to detect and pinpoint the cause of problems which impact the productivity of WLAN users. Software or hardware sensors actively probe the network from the wireless user’s perspective, to verify connectivity across the wireless link to critical network resources. AHC reduces the costs associated with user productivity loss and troubleshooting process caused by complex wireless problems.
AirMagnet Enterprise scans all possible 802.11 channels (including the 200 extended channels), ensuring there are no blind spots where rogue devices may be hiding. AirMagnet Enterprise goes beyond Wi-Fi analysis with optional spectrum analysis that detects and classifies RF jamming attacks, Bluetooth devices and many other non-802.11 transmitter types, such as unapproved wireless cameras.
The AirWISE engine constantly analyzes all wireless devices and traffic using a combination of frame inspection, stateful pattern analysis, statistical modeling, RF analysis and anomaly detection, enabling detection of hundreds of specific threats, attacks and vulnerabilities such as rogue devices, spoofed devices, DoS attacks, man-in-the-middle attacks, evil twins, as well as the most recent hacking tools and techniques such as MDK3, Karmetasploit and 802.11n DoS attacks.
Dynamic Threat Update technology speeds the creation, automation and immediate deployment of new threat signatures through the AirMagnet AirWISE® engine. As soon as any new threat definition is ready, it can be deployed with no impact to system operation, providing a unique framework for maintaining the most up-to-date WLAN security posture for the enterprise.
Threat Tracing, Blocking & Mapping
All devices are traced using a suite of wired and wireless tracing methods to quickly and reliably determine if a device is connected to the wired network. The system uses a newly enhanced set of sophisticated techniques, including use of SNMP, automated switch discovery, and hardware and traffic analysis, to ensure accurate, fast tracing in any network topology.
Threats can be manually or automatically remediated with a combination of both wired and wireless threat suppression. Wireless blocking targets a threat at the source and specifically blocks the targeted wireless device from making any wireless connections. Wired blocking automatically closes the wired switch port where a threat has been traced.
All threats and devices can be located on a map or floorplan and set to trigger rogue alarms based on the device’s location.
AirMagnet Enterprise offers the only solution in the industry to meet the established standards of a mission critical security application. It is the only system to build fault-tolerance into each component, with fail-over boot images in every sensor and automatic server fail-over licenses that come standard with the system. Additionally, AirMagnet Enterprise sensors can operate as fully independent IDS/IPS nodes detecting and remediating threats without losing information, even if the network connection to the server is lost for days.
With intelligent sensors that locally analyze Wi-Fi and RF conditions, more than 1,000 sensors can be supported through single centralized server in the data center, requiring minimal network bandwidth.
Processing at the sensor level means that each sensor continues to enforce the security policy even if connection to the server is lost for more than 24 hours. Hot standby server software (included) enables fully redundant data center operations for maximum wireless security protection.
AirMagnet Enterprise can capture a complete packet or RF forensic record of any network event, allowing appropriate staff to investigate the issue issue in depth, at any time. By leveraging its unique intelligent sensors, AirMagnet Enterprise provides the only solution in the industry to automatically capture forensic information from before, during and after the event.
In addition to rich security features, AirMagnet Enterprise constantly monitors the health of the wireless LAN and RF environment to proactively detect evolving problems that can lead to an interruption to the network. The system detects these issues, gives engineers topical remediation advise and includes active remote tools to troubleshoot the issue. This allows staff to avoid network downtime and vastly reduce the time-to-fix for any outage, leading to more uptime, improved user satisfaction and a higher performing network.
The AirMagnet Enterprise system can monitor the RF Spectrum and 802.11n traffic. AirMagnet Enterprise performs a complete interference analysis of the air. This includes co-channel interference from Wi-Fi devices, as well as optional spectrum analysis of non-Wi-Fi devices, such as microwave ovens, cordless phones or legacy wireless equipment.
AirMagnet Enterprise goes beyond simple 802.11n support to provide managers with hands-on 802.11n optimization tools and intelligence focused on real-world performance and network throughput. Tools include live diagnostics of any 802.11n connection that automatically highlights and explains how performance can be improved.
AirMagnet Enterprise provides automated compliance reporting for all major network regulations including PCI, HIPAA, Sarbanes-Oxley, GLBA and more. Reports provide instant visibility into issues that may need to be addressed for compliance and exactly what needs to be fixed. Reports can be scheduled to run and delivered automatically, ensuring a complete library of regulatory reports in the case of an audit.
Case Studies
Nipissing University Case Study
Case Study: Nipissing University Ensures Wireless and Smart Device Connectivity and Security for Students and Faculty with Fluke Networks’ AirMagnet Enterprise
Challenge:
Nipissing University's wireless network spans three campus locations and supports more than 4,500 students and more than 300 faculty and staff. It gives end-users Wi-Fi access to critical applications such as email, Internet and online curriculum materials in the classrooms and residence halls. As wireless expectations have grown and the network has been flooded with new smart devices and other wireless technology, the university's IT department has struggled to keep pace. The team constantly faces challenges around unpredictable access point traffic, rogue devices, interference, competing channel usage, the threat of malicious attacks, and even PCI compliance.
Results:
Nipissing University selected Fluke Networks' AirMagnet Enterprise to help manage and optimize wireless network performance and proactively protect against possible security vulnerabilities. The system allows the IT department to monitor performance in real-time to identify possible bottlenecks, ensure smart device connectivity, easily troubleshoot interference issues (including channel usage from other Wi-Fi networks), meet PCI compliance guidelines, quickly track rogue devices, and protect the network against possible attacks or misuse in the future.
Read full story ...
BlueSafe Case Study
BlueSafe Uses Fluke Networks’ AirMagnet Solutions to Help Organizations Throughout France Deploy High-Performance Wireless Networks
Challenge:
BlueSafe is one of the premier Wi-Fi system integrators in France. They help organizations achieve unified mobility by planning, deploying and managing wireless networks that meet business requirements for connectivity, application performance and security. As Wi-Fi networks continue to evolve and expand, and as a new generation of mobile devices hit the workplace, businesses are presented with a variety of new performance and security challenges. BlueSafe is responsible for helping these organizations address those challenges. To do this successfully, the company not only requires a set of solutions for accurately planning and deploying wireless networks, but that also enables the team to quickly troubleshoot, secure and monitor the wireless network.
Results:
BlueSafe selected Fluke Networks’ AirMagnet Survey and Planner, AirMagnet WiFi Analyzer, and AirMagnet Enterprise. These solutions give BlueSafe, and their customers, the ability to deploy high-performance wireless networks, and to secure and manage these networks once in service.
Read full story ...
Jordan School District
Jordan School District, located in West Jordan, Utah, serves more than 50,000 students across 33 elementary schools, nine middle schools, eight high and technical schools and three specialty schools. The district employs more than 4,500 faculty and staff across its 55 locations.
Challenges
With more than 55 locations, 1,300 access points (APs) and 25,000 networked devices, the district’s wireless network supports more than 50,000 students and faculty and is essential to the day-to-day operations of the district and individual schools.
Read full story ...
Department Store Case Study
Major Department Store Chain Uses AirMagnet Enterprise to Find Wi-Fi Threats “Hiding in Plain Sight”
Challenge:
This major department store chain was fearless with its use of wireless for business critical operations like credit card processing and managing inventory at distribution centers. Leadership was confident that their wireless intrusion detection and protection system (WIDS/WIPS) was protecting data shared across the 34 Wi-Fi channels available for use in the U.S., until they realized they lacked visibility into 180 additional unused channels on the network. This meant that unauthorized devices, whether malicious or not, could be hiding, undetected, on these additional channels, and could pose serious security risks to the organization and its customers.
Results:
The department store selected Fluke Networks' AirMagnet Enterprise for its unique ability to simultaneously monitor all activity and devices on all 214 Wi-Fi channels. This means that even channels that are not actively being used by the organization (outside of the 34 acceptable channels) can be monitored for rogue activity, and the IT team can be in a position to immediately take action to remove or reassign a device that could pose a threat. The company can also proactively troubleshoot performance problems, guarantee point-of-sale wireless transactions, meet PCI compliance guidelines to protect customers and the brand's equity, and reduce mean time to repair through the AirMagnet Enterprise's remote troubleshooting features.
Read full story ...
On-demand Webinars
This webinar is perfect for WLAN professionals that are new to wireless intrusion detection and prevention or those that want to round out their security experience. Topics and demonstrations cover: Mistakes that often leave WLANs vulnerable to attack; Common wireless attacks, from rogue APs and key crackers to evil twins and side-jacking; Dangerous point-and-shoot hacker tools such as Firesheep, Karmetasploit, and MDK3.
Lisa Phifer, president and principal consultant at Core Competence Inc. and Jesse Frankel, product manager for AirMagnet Enterprise discuss new advancements in dynamic security updates for wireless networks.
Webinar discusses how Windows 7 makes it easier for individuals to create rogue networks that bypass enterprise security measures and violate security policies - undetectable by traditional security systems.
Understand how to assess WLAN security threats and performance issues and quickly respond without over-burdening IT staff. Topics include: Types of wireless threats and their impact; Identifying threats/attacks using a dedicated, WIDS/WIPS system; Ways to escalate and respond to threats automatically and efficiently.
