Are your finances secure with your financial institution? Vystar Credit Union in Florida, USA speaks out on one of their recent efforts to ensure highly secure access at their institution. With the pressures of compliance and the need to protect their institution’s network and assets, Vystar deploys ISE and AnyConnect with great success. Most recently coming from Gartner IT conference in FLA I had a chance to speak with other organizations that expressed secure access concerns. Read More »
Having just moved into a new house, my wife and I are looking to see how all our old furniture can be re-used – with her eye on the best design (she’s a designer by trade), and my eye on cost. We’ll end up somewhere in the middle I expect, slightly geared towards ‘design’ if past experience is anything to go by!
Swiss furniture manufacturer Vitra pulls off both objectives – providing customers with great design, AND managing to reduce cost in the organization, How? With Cisco of course!
Take a visit across the Swiss border into Germany and you can visit to the VitraHaus location, its flagship store. Visiting Vitrahaus is like taking a trip through design history, but it also offers the opportunity to encounter the work of leading contemporary designers. Furnishings and objects from the Vitra Home Collection are arranged in a variety of settings for both living and working.
Communications and collaboration are central to bringing these concepts to life. Vitra has been partnering with Cisco for over a decade, evolving its IT infrastructure and expanding wireless LAN deployments. The biggest concentration of wireless access points, more than 70, is at Weil am Rhein. The latest stage of that IT strategy intends to make wireless a key enabler for business transformation.
“Improving guest Wi-Fi access was very important,” says Marco Gersbacher, head of IT infrastructure services at Vitra, “while we also wanted to make sure the business was fully prepared for bring-your-own-device.”
Although Vitra had no formal bring-your-own-device (BYOD) policy, a growing number of employees were using personal smartphones and tablets alongside company laptops in the workplace.
This trend created problems with device recognition and password reset requests. Certain devices could connect only over the wired network, others just to Wi-Fi, and some not at all. So, a robust BYOD framework was a strategic priority. Without visibility of devices, however, the company was unable to guarantee network performance and security.
A validated Cisco® Borderless Network design has helped enable Vitra unify access across all network domains: wired, wireless, and VPN. The solution was installed by NextiraOne and includes the following components: Read More »
What does it actually take to enable the 89 percent of Cisco employees who do at least some of their work remotely? For Cisco IT, this challenge means supporting products and services on both sides of the connection: in the teleworker’s home (and on their mobile devices) and in the Cisco corporate network.
Cisco Teleworkers Solutions in Employee Homes
We currently support three solutions to meet the teleworking needs of our mobile and remote employees:
- Cisco AnyConnect Secure Mobility Client: Installed on the employee’s laptop or mobile device, this software client provides a secure VPN connection to the Cisco network. It is available to any Cisco employee and we currently support 30,000 users.
- Cisco OfficeExtend: This solution includes a wireless access point that secures connectivity for the employee’s laptop and Cisco Unified IP Phone 9971 over a home network while reducing congestion, wireless interference, and security risks from other devices. We use this solution primarily for contact center agents, contractors, and employees who don’t require the HD-quality video of Cisco TelePresence for their work.
- Cisco Virtual Office: This solution uses a Cisco 881 Integrated Services Router in the home to connect an employee’s laptop and Cisco Unified IP Phone 9971 to the Cisco network over an encrypted VPN. It also delivers HD video for the Cisco Jabber Video for TelePresence client or a separate Cisco EX 90 personal video endpoint. Cisco Virtual Office is used by employees who telework extensively and we currently support over 26,000 users.
The diagram below shows how these solutions connect to the Cisco network via the employee’s residential broadband Internet access service.
Network World recently completed a competitive review of the leading Virtual Private Networking (VPN) products and the Cisco® Adaptive Security Appliance (ASA) and AnyConnect™. With a long history of providing market-leading remote access VPN capabilities and optimal usability, Cisco is honored to receive this recognition from Network World based on their hands-on product testing. Read More »
Following up on my last note about BYOD at Cisco, I wanted to update you on the latest numbers here at Cisco. As Sheila Jordan had pointed out here, we have surpassed the 20% tablet penetration among our workforce and mobile devices continue to grow at a rate of 1,000 each month. I highly recommend you doing a quick read on her six steps of approaching device deluge. Meanwhile, the latest IDC report (Aug 8, 2012) reaffirms the 2-horse race in the smartphone world. Android and iOS powered 85% of all smartphones shipped in the second quarter of 2012 (2Q2012).
Maintaining our market leadership in supporting the broadest set of Operating Systems (desktop and mobile) and Web Browsers, Cisco Security is excited to announce the availability of AnyConnect 3.0 for Android (Download here). As in the past, we have worked with the market leading Android device makers along with supporting the Android VPN Framework (AVF) to ensure the latest AnyConnect functionality. These new features are now available on any Android device running on version 4.0 (Ice Cream Sandwich) or higher (including Jelly Bean).
SOME KEY FEATURES OF ANYCONNECT 3.0 FOR ANDROID:
- Intel Android (IA): The Android VPN Framework (AVF) image is now compatible with x86 Intel Android devices.
- IPsec IKEv2: AnyConnect users can connect via IPsec IKEv2 connections to their corporate Cisco ASA in addition to SSL (TLS or DTLS). (Requires ASA 9.0+)
- Suite B Cryptography: AnyConnect users who need NSA’s recommended Suite B Cryptography will be now able to do so from their mobile devices. (Requires ASA 9.0 and AnyConnect Premium Licenses.)
- Untrusted Certificate Warnings: Reduces Man-in-the-Middle attack risk by rejecting untrusted certificates by default and requiring end-users to acknowledge risks before connecting to a gateway with an untrusted certificate.
- SCEP Proxy: AnyConnect users can enroll their mobile device with an internal Certificate Authority (CA) Server, using SCEP without opening up the CA Server directly to external threats. (To embed the identity of the mobile endpoint in the certificate request, Mobile Host Scan must be utilized, which is an AnyConnect Premium License feature).
- FIPS 140-2 Compliant: AnyConnect users now have access to the latest FIPS 140-2 cryptographic compliant module to meet industry compliance/mandates.