1. Avaya Identity Engines r8.0Allowing Network Access without compromising Security

2. Agenda Introduction to BYOD Is BYOD a Risk or Reward? The Avaya BYOD infrastructure solution Avaya Identity Engines Value Proposition 2011 Avaya Inc. All rights reserved. 2 3. Office Tools started here: Then came this! 2011 Avaya Inc. All rights reserved. 3 4. The rest is history100 000 Android apps350 000 iPhone apps 75 000 000 Tablets in 2012800 000 000 Smartphones1 200 000 000 Social Media Users Tablet market $45B by 2014 Yankee 2011 50% Enterprise users interested in or using consumer applications Yankee 2011 Smartphone app revenue to triple by 2014 Yankee 2011TIMEs Person of the Year: YOU 2011 Avaya Inc. All rights reserved. 4 5. It is not About Saying No!!It is about saying YES!butstaying on controlNO you cannot bring your iPadNO you cannot connect outdoorNO you cannot bring your fancy laptopNO you cannot do video conferencing YES bring your own iPad YES you are welcome to do mobile collaboration YES you are welcome to use virtual desktop YES you are welcome to use Wifi VOIP 2011 Avaya Inc. All rights reserved. 5 6. Will you support BYOD? IAUG survey: 88% adopting personal devices / allowing iPads today! 2011 Avaya Inc. All rights reserved.6 7. Is BYOD a Risk or Reward? Risk Reward Security Increased risk of financial and Reduced CAPEX information exposure Employer does not have to pay Guest access for device IT Compliance Who gets on? To do what? To go where? Increased Employee and Network Capacity and QoS Business Partner Productivity Using latest and greatest Multiple devices, high devices they are familiar with bandwidth and prioritisation Devices they WANT to use Higher OPEX True mobility Supporting myriad of devices can be more complex 2011 Avaya Inc. All rights reserved. 7 8. Plan for Success with Avayas BYOD SolutionIdentity-basedScalableNetwork Access Control Future-proof WirelessSecure Optimised Network & DeviceFor collaborative, real time securityapplications 2011 Avaya Inc. All rights reserved.8 9. What is Identity Engines? Identity and Network Access Control (NAC) solution Ensures consistent and predictable network access for managedand unmanaged devices Controls who can use the network to access which resources, whenand where they may do so Supports any device, any network, any vendor Centralised, out-of-line solution for maximum scalability and costeffectiveness Automated, standards-based Software-only, highly available Facilitates regulatory compliance 2011 Avaya Inc. All rights reserved. 9 10. Identity EnginesAuthenticated Network ArchitecturePolicy Policy PolicyEnforcement PointDecision Point Information PointDIRECTORY ABSTRACTION LAYERNETWORK ABSTRACTION LAYERGuest Access MgmtPosture AssessmentReporting & AnalyticsAccess PortalCASE ClientIdentity Engines 2011 Avaya Inc. All rights reserved.10 11. Identity Engines Portfolio Core ApplicationHighlights IgnitionServer Ignition Server - centralised policyengine that performs authentication andauthorisation for clients attemptingnetwork access Ignition Guest Guest Manager - allows front desk staff Managerto create temporary guest user accountsAdditional Applications Posture Compliance integrates with MS-NAPMS-NAP for managed client health Postureassessment Compliance Ignition Analytics presents network Analyticsauthorization and authenticationinformation in a variety of summary anddetail formats Ignition Access Portal Access Portal compliance checkingfor un-managed devices e.g. BYOD 2011 Avaya Inc. All rights reserved. 11 12. Identity Engines - Whats New in 8.0? ccess Portal Captive Portal for wired and wireless access from guest and BYOD Device Profiling and BYOD on-boarding Compliance checking leveraging C.A.S.E. and MS-NAP .A.S.E. (Client for Accessing the Secure Enterprise)Identity Engines r8.0 Best of Interop finalist Transient client for automating configuration of managed and un-managed end-points to participate in NAC Dissolvable client: option for revertible or non- revertible deployment A date: April 30th 2012 2011 Avaya Inc. All rights reserved.12 13. Identity Engines Ignition Access Portal Facilitates network access to guest Serves as a Captive Portal for non-802.1x clientsdevices, non-802.1x devices,BYOD on-boarding, and CASE Performs device profilingClient hosting. CASE Client for auto-config of 802.1x and MS-NAP A single license allows deployment on Windows machinesof multiple Access Portals for Device On-boardingdifferent use against one IgnitionServer instance . 2011 Avaya Inc. All rights reserved. 13 14. Identity Engines Ignition Access Portal Multiple Guest Managers maybe deployed against a singleinstance of the Ignition Server Device Profiling Administrator will be able to set the Access Portal to perform device profiling of wired and wireless devices Device fingerprinting: Devices Type, Devices Sub-Type, Device OS, Devices OS Version Devices attributes are sent to the Ignition Server for registration and association with user BYOD On-boarding Auto-register of Guest Visitor and Employee Guest devices Device profiling of registering devices Auto-association of devices with guest / employee records in Ignition Server Populating device records in Ignition Server with device profile attributes 2011 Avaya Inc. All rights reserved. 14 15. Identity Engines Ignition CASE Client CASE Client for Accessing the Secure Enterprise Transient client to automate configuration of managed and guests un-managed endpoint devices to participate in Network Access Control CASE auto-configuration of 802.1x on Windows devices CASE auto-configuration of MS-NAP on Windows devices 2011 Avaya Inc. All rights reserved.15 16. Identity Engines Use Cases Corporate Governance and Compliance BYOD access control Reducing OPEX through automation Simplified Guest Access by the front desk Validated remote access for non-corporatedevices (Teleworker, Disaster Recovery etc) M&A: integrating access policies and identitiesfrom different organisations Authorised Fixed Assets (e.g. phones, printers,health monitors etc.) 2011 Avaya Inc. All rights reserved.16 17. Identity Engines Conclusion Enhanced Security Granular Control Reduced Costs Simplicity Flexibility Regulatory Compliance Secure Network Access for all users,all devices, all the time 2011 Avaya Inc. All rights reserved.17 18. Back-up Slides 2011 Avaya Inc. All rights reserved.18 19. Part Codes and Pricing (Subject to change!!!)Part Code Virtual AppliancesMSRPEB1639193 Ignition Server LARGE*. Virtual Appliance Software for VMware ESXi$23,952EB1639194 Ignition Server SMALL*. Virtual Appliance Software for VMware ESXi$13,535Software ModulesEB1639195 Ignition Guest Manager (requires Ignition Server) $20,827EB1639196 Ignition Analytics (requires Ignition Server) $20,827EB1639197 TACACS+ module$13,535EB1639236 MS-NAP Posture Compliance for Ignition Server LARGE*$31,245EB1639237 MS-NAP Posture Compliance for Ignition Server SMALL*$15,620EB1639241 Access Portal for LARGE* Ignition Server. Includes CASE $20,828EB1639242 Access Portal for SMALL* Ignition Server. Includes CASE $13,537Solution BundlesEB1639232 BRONZE HA Bundle (includes 2 x Ignition Servers SMALL*) $24,990EB1639233 SILVER HA Bundle (incl. 2 x Ignition Servers LARGE* & Ignition Guest Manager) $62,495GOLD HA Bundle (incl. 2 x Ignition Servers LARGE*, Guest Manager, &EB1639234 $79,162Analytics)EB1639235 WLAN Guest Management Starter Kit (Lite*) $2,079EB1639A29E5 BYOD Kit: Enterprise & Guest Access LITE* $6,625EB1639A30E5 BYOD Kit: Enterprise & Guest Access SMALL*$27,150EB1639A31E5 BYOD Kit: Enterprise & Guest Access LARGE*$50,549*LITE= 5 Authenticators; SMALL = 20 Authenticators; LARGE = Unrestricted Authenticators 2011 Avaya Inc. All rights reserved. 19 20. Resources Collateral Brochures, Technical Configuration Guides etc. BYOD customer presentation and white paper Look in the Identity Engines Portal Sales and Technical Support Your local Avaya Networking Sales, CAM or TechOps contacts 30-Days Free Trial ID Engines FULLY featured at URL: www.avaya.com/identitytr All modules are included Upgrade to production deployment simply by applying purchased licenses Long term lab licenses available from Avaya Product Management ask your regular Avaya contact 2011 Avaya Inc. All rights reserved.20 21. Channel Partner Opportunity A flexible NAC solution Standards-based Works with any vendors network Works with any existing identity stores Very cost competitive Little investment required Opportunity with every LAN and WLAN sale Every customer needs NAC to enforce compliance BYOD is driving new opportunities Offers differentiation in the market Combine with Avaya WLAN 8100 for a compelling BYOD infrastructure solution 2011 Avaya Inc. All rights reserved.21