Integration between security systems is crucial in providing ZTNA (Zero Trust Network Access). It improves customer company network resilience by providing centralized monitoring, streamlined workflows, improved threat detection, faster incident response, enhanced scalability and flexibility.

That is why one of the parts of developing the NACVIEW system is to empower it with the ability to integrate with solutions used by our current and future customers.

Tests with Stormshield firewall proved that there are many possibilities of integration:

One-Time Password (OTP) Authentication for VPN connections (Stormshield VPN Client)

To enable it Stormshield must be configured in NACVIEW as a network device. The second condition is that the user has the Stormshield VPN Client. The first stage of verifying the user’s identity is checking his credentials in the local NACVIEW database or an external one, e.g. Active Directory. If the login and password are correct, the account is active and the resource is properly configured, the second stage of validation takes place. NACVIEW sends the user an SMS with a verification code, or the code from the NACVIEW Google Authenticator or Google Authenticator app is used which must be entered into the Stormshield VPN Client. After correct verification of the code and its validity, access to specific network resources is granted.

Automatic response for incident alerts received from Stormshield.

To enable it syslog sending must be configured between Stormshield (sender) and NACVIEW (receiver) and rules (events definitions) must be configured. That integration enables organizations to detect and mitigate security threats more effectively and maintain a secure network environment. Potentially dangerous devices could be easily traced in the company network and afterward, quarantine those devices and alert notifications to the security administrator or the Security Operations Center (SOC) personnel, providing them with real-time information about the detected threat.

Stormshield can also issue a “rating” for a given computer/user, and integration via API empowers NACVIEW to quarantine noncompliant devices based on their rating.

If you would like to test more possible integration, write to us on https://community.nacview.com/

NAC – Network Access Control solutions rely on switch functionality to enforce access policies in the company network. When a device connects to a switch port, the switch communicates with the NAC system to determine whether the device is compliant with security policies. This is why switches play a crucial role in the NAC implementation in the customer environment. Among the required switch functionalities is the support of authentication mechanisms such as IEEE 802.1X and MAB (MAC Authentication Bypass) to provide access enforcement, as well as support of SNMP, and SSH to provide real-time monitoring. 

Over the last few years, NACVIEW has been implemented in almost every industry. It allowed us to cooperate with a wide range of network devices’ suppliers. As an independent NAC vendor (not a manufacturer of a specific brand), we put a great effort into providing our customers with freedom of choice by letting them decide which switches best suit their needs and by creating integration and smooth support for all possible brands.

Recent implementations on the German market allowed us to configure NACVIEW with MICROSENS switches. MICROSENS is a popular supplier operating in four business areas: Enterprise Networks, Industrial Solutions, Optical Transmission, and Smart Building Solutions.

An example MICROSENS switch configuration can be found in the NACVIEW documentation at: https://docs.nacview.com/en/Device-Configuration/Microsens/Microsens-G6

If you are looking for a switch configuration, please contact our support team or start a discussion on the NACVIEW Community.