Networks are about people, not just devices. To that end, network and security administrators are constantly challenged to optimize translation of network device information to the people who are using them. This correlation is a cumbersome task, leading to less than optimal operations. Infoblox has put on its thinking cap and devised a unique way to tackle this problem.
Infoblox Identity Mapping, announced today, bridges this gap, making it easier for network administrators to locate the source of security events, track mobile devices, monitor network usage and more. In short, Infoblox Identity Mapping introduces user identity as a front and center piece of information throughout the Infoblox user interface.
With Infoblox Identity Mapping, it is possible to see associated users virtually anywhere an IP address is displayed. In the instance of a security breach, for example, it’s easier to zero in on which devices are involved. And, of course, the faster IT teams can identify potential breach information, the faster it can be remediated. This is the first time an enterprise-grade DDI solution has offered this capability.
We’ve been able to make this connection by making the answer more obvious. The Infoblox Identity Mapping feature analyzes Microsoft event logs for records of user log in, log out and authentication, bringing the information into the Infoblox IP address management (IPAM) database, providing a truly authoritative data source.
Here are a few deployment scenarios for Infoblox Identity Mapping:
- Security event investigation. Infoblox Identity Mapping determines which device had the IP address at the time of the event and reports on the user who was logged into the device at that time. This allows the team to quickly identify which user’s account or device may have been compromised.
- Tracking mobile devices. Though mobile devices aren’t part of the Windows domain and typically don’t authenticate against the domain, it’s likely that they connect to the corporate Microsoft Exchange server in order to access email. Infoblox Identity Mapping correlates Exchange authentication to the user’s IP address, providing the necessary visibility, without having to install an agent on the mobile device.
- Notify users of a network outage. Infoblox Identity Mapping allows an IT team to see how many users are actively using a segment of the network, and who they are, so the team can determine the impact of the outage, as well as notify the impacted users prior to a scheduled shutdown.
Best of all, Infoblox Identity Mapping is available now to all our customers who can upgrade to version 7.2 of the NIOS operating system. No additional software or agents are required to provide the connection between Active Directory and the Infoblox IP address management (IPAM) database.
To learn more about Infoblox Identify Mapping, click here. You can also watch a two-minute demo: