ForeScout Technologies’ CounterACT appliance is designed for network access control and intrusion prevention.
This device will do vulnerability scans of Windows platforms, including servers on the network, as well as most endpoint security tasks. CounterACT has policies that can be created to enforce versions of service packs, anti-virus, and user credentials. It also has the ability to protect the network against rogue wireless access points.
The appliance has a straightforward, simple deployment with an easy-to-follow setup. The quickstart guide takes the administrator through setting up the actual appliance, while the easy-to-navigate web interface guides through the rest of the configuration.
This product performed very well in our test environment. All the set policies were carried out and the appliance sent notifications when there were violations. The appliance also can be set up to remediate any violations it discovers.
Easy-to-navigate and well-organised documentation is provided with the ForeScout CounterACT. This appliance has several solid, clear manuals.
The quickstart guide answers all the deployment and basic configuration questions, but we were pleased that several topology diagrams and deployment options are also provided within the quickstart guide.
Support offered by ForeScout is by purchase only. Once a support programme has been purchased, there are many resources and tools located in the customer resource centre on the ForeScout Technologies website.
However, we would prefer to see a basic support program included as a minimum for this type of product.
CounterACT is a lot of appliance for a reasonable price. While we noticed that most devices of this type charge per IP or per seat, ForeScout charges a flat rate, with all software included. The only negative is the extra cost of support.