Lync Servers More Secure than Ever with LyncShield
February 05, 2015
AGAT Software recently launched LyncShield, a new security suite for Microsoft (News - Alert) Lync offering organizations a sorely needed solution for connecting to Microsoft Lync servers from smartphones and other external devices without risking compromising sensitive data. The solution includes a long list of features to help organizations manage connections with workers’ devices while safeguarding the network against attacks, both internal and external.
LyncShield protects users’ active directory (AD) credentials by using a dedicated Lync login option that doesn’t store AD credentials on the mobile device. Organizations can also use RSA (News - Alert) tokens, if applicable, to connect to Lync without using AD credentials. This effectively prevents connections with unauthorized devices that may carry corporate credentials.
Furthermore, Two Factor Authentication (TFA) ensures workers only connect using pre-approved devices by matching each device with a user. In addition to preventing workers from sharing - inadvertently or otherwise - Lync resources with outside parties such as friends and family, this feature effectively safeguards against hackers and other unauthorized users who obtained access to AD credentials. An IP filter (IPF) limits access to the Lync server only to corporate devices working within a specified IP range, which adds a layer of geo-location protection.
With these features the solution can block exposure to DoS (Denial-of-Service), DDoS (Distributed-Denial-of-Service) and brute force attacks on the gateway level by configuring a block-failed login policy, which prevents attack attempts from reaching the AD. Its unique site defense approach can deal with attacks through all authentication channels.
Exchange Web Services (EWS) protection ensures networks are protected from account lockouts and safeguards important data to ensure it is not exposed during communication with the Exchange server. Any information requests from unregistered devices are immediately blocked.
"Connecting to the organization's server using the Lync client from smartphones, tablets and any other device outside the organization poses serious security risks," said Guy Eldan, CEO of AGAT Software, the developers of LyncShield. "These risks derive from the need to authenticate a user connecting externally from non-managed environments and devices."
With LyncShield, organizations have access to a solution that plugs the known holes in working with Microsoft Lync servers and benefit from top-notch security. Its unique system of user authentication ensures access to important corporate data is limited only to those who are intended to see it.
Edited by Maurice Nagle
Article comments powered by