Client Background and Challenges
A mid-size manufacturing company with multiple office sites and manufacturing centers where concerned about device, employee and guest authentication and general network security. Management wanted to deploy two new Cisco ISE servers in high availability and bring all network devices, employee and guest logins under AAA policies and thus follow corporate IT security policies and industry best practices.
Kreeyaa Solution
Kreeyaa provided gap analysis for the customers network infrastructure and as identified deployed Cisco ISE servers to serve AAA functionality:
- Policies, procedures, plans, and related documents
- Configured two Cisco ISE virtual appliances in high availability mode
- Configured policies for device authentication using tacacs
- Configured policies for Employee wired and wireless 802.1x authentication using radius
- Configured policies for MAB authentication for non-supplicant devices using radius
- Configured policies for guest wireless access using sponsored portal mechanism
- Tested and validated with customer and assist in cutovers.
Kreeyaa solution included a comparison of the organization with security best practices to identify gaps.
Results
Kreeyaa network security auditdocumented several areas that placed the organization at risk to both internal and external threats. The solution brought network security under corporate IT standards and compliance, thus increasing security and protecting its information assets.