Bradford Network Sentry v4.1.1 traditionally is sold as an integrated appliance-based solution. However, Network Sentry will soon be available as a software-based offering that can be run in a virtual server environment. Bradford's Network Sentry uses an out-of-band, policy-driven architecture to deliver centrally managed visibility and access control across wired, wireless and VPN environments.
Initial setup of the appliance and configuration of the Layer 2 or Layer 3 isolation options will take a bit of time, but is done through a menu-driven wizard. Once initially set up, the endpoint configuration and management user interface is very strong. The device will discover all your endpoints and allow you to navigate through the management options associated with each. The user interface is mature and provides easy navigation options to quickly switch between views.
User identity and role information are ascertained via integration with authentication and directory services, such as RADIUS, Active Directory and LDAP-based directory services. Network access policies are associated with a seven-point identity profile consisting of username, user role, host/device name, MAC address, IP address, network access location and time.
Integration with third-party security devices, such as IDS/IPS and other systems, is also supported, enabling real-time, traffic-based compliance monitoring and alerting.
No basic support is included with the product, but gold and platinum options are available for 18 or 27 percent of the base price. Price for the appliance is in the middle of the spectrum. It delivers a lot of capabilities in an easy-to-use platform.