LanguageNetwork Device AAA Management
Unified authentication, authorization and accounting of network device administrators for multi-brand devices to secure highly privileged accounts.
Centralize your network device management
-
Unified authentication management of device administratorsYou can centralize account creating for device administrators, set the login password, expiration time, legitimate number of online users and other conditions in batches to manage password permissions. With support for local and multiple user sources, including LDAP, AD, POP3, RADIUS, etc., you can quickly and easily unify management.
-
Compatible with different types/brands of network devicesCompatible device types include switches, routers, firewalls, WAFs, etc. By extending Tacacs+, Radius and other protocols, the product can be adapted to devices of mainstream vendors, such as Cisco, Huawei, and H3C, to achieve unified management for heterogeneous systems across brands.
-
OTPs reinforce the security of OPS accountsOTPs available from Nington's multi-form tokens combined with original static passwords reinforce the security of OPS accounts of network devices, without regular password changing.
-
Sensitive operation warning and risk account isolationAfter setting sensitive commands in Tacacs+, administrators will be notified by SMS and e-mail to isolate risky accounts during user's sensitive operation, and can trace the behavior log of that operation to clarify accountability.
-
Detailed behavior logs of network device operationLogs of device administrators' authentication, authorization and behavior audit are recorded and can be exported to text files. Specific information include login name, login result, authentication time, end user IP, permission level, authentication type, authorization action, audit type, and audit time.
Three major modules of AAA management
Unified user managementUnified network device managementLogin authentication restrictionsEnhanced login verification with OTP
Role-based authorizationDevice-based authorizationTacacs+command-level fine-grained authorization
Modular audit logRisk account isolation
Find your scenario-based solutions
- Finance
- Energy & Power
- Big Data Centers
- Telecom Carriers
- Large Internet Companies
Nington's core competitiveness
| Aspects | Bastion host AAA management | Vendor AAA management | Nington AAA management |
|---|---|---|---|
| Operation experience | Insufficient authorization | Complicated interface | Easy operation and high modularity |
| Brand compatibility | High | Low, vendors' own products only | High, compatible with equipment of different manufacturers/brands (cisco, Huawei, H3C, Boda, etc.) |
| Two-factor account protection | Partially supported (usually bastion host only) | Not supported | Supported |
| Authorization level division | Primary authorization with restricted user login authorities | Advanced authorization with granularity covering device type and operation command | Advanced authorization, with granularity covering user role, device brand, device type, device level, and operation command |
| Audit method and degree of intuitiveness | Video audit, inconvenient for review | Report audit, intuitive and detailed | Report audit, clarifying operator, operation time, command and device |
| Audit footprint | Large | Small | Small |
| Business segmentation & control | Limited to user authentication | Vendors' own products only | Fine-grained authority division based on roles and scenarios for heterogeneous, compatible and unified management |
| Risk alarm | No SMS/e-mail alert | No SMS/e-mail alert | Sensitive command SMS/e-mail alert supported |
Easy deployment and high reliability
Support VMware environment, virtual machine deployment, centralized and distributed deployment, and cluster redundancy
Virtual machine deployment
Centralized deployment
Distributed deployment
Cluster redundancy
Customers' Approval
Nington is a very pragmatic enterprise. Through continuous innovation, it has reached an absolute leading level in the field of authentication. High quality services make us feel professional.
Nington as a localized IAM vendor has emerged with its products that have stood the test of market. Its MFA helps us quickly achieve classified protection compliance and improve the security of Intranet.
Nington’s integrated IAM solutions further secure password authentication to ensure office security. For access, Nington enables unified identity authentication and terminal access security for multiple branches, supporting management of multiple roles from guests to employees and user-identity-based access control and online real-name auditing, which significantly improves the security bottom line of the Intranet and helps achieve classified protection compliance quickly.
Compared with Okta, Nington can better help WeWork follow the trend of localization in China and make office work more convenient and efficient with its MFA, unified identity management and SSO.
We adopt Nington’s MFA solution to meet China’s compliance requirements, align with WeCom and ADFS. Nington’s efficient, convenient, safe and stable identity and security services also help reduce IT overheads and improve user experience.
Thousands of enterprises choose Nington
-
Technology
-
Manufacturer
-
Energy
-
Healthcare
-
Finance
-
Education
Perform better with the following products
Identity security anytime anywhere
x
