OpenNAC Enterprise has several passive methods to discover both
IT and OT devices, passive methods reduce impacts and additional
network traffic thus preventing overload or business interruption.
From the discovery process, all network assets and its associated
information is included in a CMDB, the information collected will be
available to define the assets classification according to business
rules. OpenNAC Enterprise is a software solution can be deployed
from the cloud, on-premise or a hybrid model thus reducing the
impact on your infrastructure. 

Main features:

• Automates the discovery and inventory of 100% of the devices
connected to the corporate network (Quantification of network
assets).
• Profiles and classifies all devices connected to the network
(Asset Qualification).
• User and device authentication, identity and entity validation in
wired, wireless and VPN networks using 1 or 2 authentication
factor (2FA).
• Provides a central management point for authentication and
network access control policies.
• Network segmentation and micro-segmentation, assets isolation,
protection of critical assets, and attack surface reduction
• Deploy a security baseline for user devices posturing and
network devices configuration, avoid security incidents.
• Automate audit reports to establish in real time, any compliance
gaps and estimate the corresponding remediation times.
• Support remote user VPN with 2FA, user device posture and realtime
monitoring for VPN traffic
• OpenNAC Enterprise deployment on virtual machines, optimize
rack space and easily scale the solution.
• Use your current infrastructure to enrich network information
security orchestration and get more out of your current security
investment. Use integrations / third party information (Siems,
NGFW, AVs, EDRs, MDGs ..)
• Buy only the feature you are going to use, save money and
optimize your technology budget.
• We adapt to electronic multivendor environments.
• Facilitates the adaptation of standards and frameworks such as
ISO2700x, NIST, ENS etc.