NetAttest EPS

The World's First and Only All-in-One NAC Solution
Download Product Sheet
900x600_Access-square

Network Access Control doesn’t have to be hard

Network administrators and IT departments often see Network Access Control as a burden. NetAttest EPS changes that perception. Easily implement Network Access Control and provide users with the most convenient solution on any device or operating system.

NetAttest EPS is a complete, port-based network access solution and uses the IEEE 802.1X standard to act as an authentication and authorisation server. It's ideal for protecting both large networks and small networks, in one location or many, and it protects the wire, Wi-Fi and VPN.

  • Protect your network from unauthorised access
  • Mitigate against breaches and costly data loss
  • Deploy certificates for both user and device authentication
  • Authorise user access to permitted network resources
Find Out More
Group 1023

All-in-One-solution

NetAttest EPS has everything you need for complete Network Access Control, right out of the box. It’s vendor-agnostic and easily integrates with almost all third-party products, reducing the overall costs and making it vendor-agnostic at the same time.

  • Authentication, Authorisation, and Accounting for user resource requests
  • EAP authentication including MAC address, one-time passwords, and certificate-based authentication
  • Acts as a dedicated or subordinate certificate authority and integrates with existing Public Key Infrastructures
Group 808

802.1X WLAN access control

NetAttest EPS makes WLAN access control as simple and powerful. Guests, temporary employees or contractors can use the self-service portal to request temporary access to the Wi-Fi.

  • Includes self-service portal for temporary Wi-Fi access (ideal for guests, contractors, and temporary employees)
  • Directs users to specific network resources
  • Provides an internal temporary access user database
Group 1011

Full back-up and redundancy

You’ll gain ultimate peace of mind with a super-fast, integrated back-up and restore process. NetAttest EPS can also create redundant installations using RADIUS servers to provide a contingency for certificate authority (CA) issues.

  • Full back-up completes in less than 20 seconds
  • Full restores take just 100 seconds
  • Full configuration (including CA configuration) automatically shared daily between redundant installations
Network Access Control- One Step Before Your First Line of Defence eBook

Download: Network Access Control: One Step Before Your First Line of Defence

Get your copy

KeyManager: 3-step Certificate Administration

The Soliton KeyManager app makes it easy for network administrators to use short-life certificates for enhanced security. The application offers a user-self-service to request and install user and device certificates automatically on any device in just three steps. The Soliton KeyManager app sends the user a warning to renew the certificates when users click the link to renew the certificate.

Benefits

  • Reduces time spent on certificate management by the IT team
  • Adds security to the Simple Certificate Enrolment Protocol (SCEP) via a unique secret per request
  • Enables both public and private keys to be generated
  • Exporting the key is impossible, thanks to the way it is stored

"It’s so fast to deploy: A leading automotive supply chain manufacturer made the switch to the live environment over a lunch break. Initial set up takes less than 5 minutes — full NAC is up and running in 30 minutes."

Wizard-guided installation/management

Soliton's approach is always to take out complexity and enable easy control and management for IT. The wizard-guided feature of NetAttest EPS allows a quick, intuitive dashboard making it straightforward to install and maintain.

  • Questionnaire on each possible configuration 
  • Context-based manuals provided in the portal
  • Outstanding tasks based on questionnaire visible
  • Task driven menu builder for optimised operation dashboard
Group 1067

Certificate Authority

NetAttest EPS prevents unauthorised network access with straightforward and powerful certificate management tools.

  • Self-service web portal for users to request and download certificates
  • Online certificate status protocol responder for easy checking of certificate revocation
  • Support for MDM systems and third-party device certificate authentication
  • Customizable certificate signing request templates for extended key usage and validity and renewal periods
  • Support for special-purpose certificates (Windows SmartCard, Code Signing, and more)
Group 807

MAC address authentication

NetAttest EPS provides a dedicated database for MAC addresses to simplify the process of managing non-802.1X devices.

  • Provides all the tools needed for quickly adding new devices to your network
  • A dedicated, secure MAC address database
  • Storage for up to 200,000 MAC addresses
  • Automatically detects non-802.1X devices and adds them to a whitelist
  • Dedicated interface for registering new MAC addresses

Find out more
Group 1020

Any device - same deployment process

NetAttest EPS provides a fully unified deployment process to allow for easy distribution of certificates. The process always remains the same, no matter the device or platform.

Uses the Soliton KeyManager for distribution and installation of certificates. The deployment process remains the same, regardless of the device or operating system.
viktor-theo-MKG01FfX8nM-unsplash

Leading Automotive Supply Chain Manufacturer Enables Easy and Secure Network Access Control

Do you want to know what a NAC solution looks like in real life? Download our case study to see how a leading automotive supply chain manufacturer deployed NAC to make access safer and easier.
Download the Case Study

NetAttest D3

The NetAttest D3 is a dedicated high-speed DHCP, DNS and DDNS server designed to complement NetAttest EPS. It is a security component which checks connections go to the right place - every time.

With a high-speed DHCP IP address allocation speed that is ten times faster than competitive solutions and redundancy configurations intended for organisations that target zero downtime, the D3 enhances network connectivity and management. NetAttest D3 is suitable for organisations that want to:

  • Enhance their network security 
  • Ensure stability with dedicated tooling for DHCP, DNS and DDNS 
  • Create a highly available environment with no burden on management
  • Operate a DHCP/DNS server that meets the needs of each specific location
  • Implement DHCP/DNS servers at multiple locations at a low cost

 

NetAttest_D3-48
MAC-Address-eBook-Cover

Access Control Beyond MAC Address Filtering

It’s impossible to entirely avoid dealing with machines that only come with MAC addresses (especially in areas such as healthcare and automotive) as an identity. At Soliton, we’ve worked hard to balance these requirements with your security needs.

Using a dedicated database for MAC addresses, NetAttest EPS simplifies the process of issuing access for these devices:

  • It gives you all the tools you need to add new devices to your network quickly
  • A secure MAC address database with storage for up to 200,000 addresses
  • A dedicated interface for registering new MAC addresses
Download Your Copy

Specifications NetAttest EPS

1. NetAttest EPS specifications

 

Feature

EPS-ST05A-A
EPS-ST05A-V

EPS-DX05A-A
EPS-DX05A-V
General Client certificates 100 - 5,000 100 - 100,000
Max. number of RADIUS clients

Unlimited

(please select the best model according to your environment, such as system load)
Supporting authentication protocol EAP-TLS, EAP-MD5, EAP-PEAP (MS-CHAPv2, GTC), EAP TTLS (PAP, CHAP, MS-CHAP, MS-CHAPv2),  PAP, CHAP, MS-CHAP, MS-CHAPv2
Redundancy Tick_Icon

 

 Tick_Icon

 
RADIUS
extension		 One Time Password Tick_Icon

 

 Tick_Icon

 
MAC address authentication Tick_Icon

 

 Tick_Icon

 
Group profile Tick_Icon

 

 Tick_Icon

 
Certificate
Authority (CA)		 Issue external server certificate  Tick_Icon

 

 Tick_Icon

 
Max. number of certificates 2,000 400,000
Extended CA function Tick_Icon

 

 Tick_Icon

 
External
database		 Windows Domain Tick_Icon

 

 Tick_Icon

 
External LDAP database Tick_Icon

 

 Tick_Icon

 
RADIUS proxy Tick_Icon

 

 Tick_Icon

 
Log
manage-
ment		 RADIUS accounting Tick_Icon

 

 Tick_Icon

 
Log maintenance Cross_Icon

 

 Tick_Icon

 
  Other SNMP (agent), NTP synchronisation, Syslog (TCP/UDP), Support UPS

2. Physical appliance

  EPS-ST05A-A EPS-DX05A-A
Form Factor EIA19 inch (incl. rack mount kit)
Dimensions (W x D x H) 438 x 44 x 292 mm 443 x 44 x 386 mm
Weight 4.2 kg 7.3 kg
Network interface 10/100/1000BASE-T(X)
Auto recognition & Auto-MDI-X x 4 ports
Power supply 90 ~ 264VAC, 47 ~ 63Hz 

90 ~ 264VAC, 47 ~ 63Hz 
Redundancy (hot swap supported)
Max. power consumption 28 VA 120 VA
Calorific value

95.5BTU/h
24.1 kcal
28W

 409.2BTU/h
103.1kcal
120W
Operating environment Temperature 0 ~ 40°C
Humidity 20 ~ 90% non-condensing
Certifications VCCI (Class A)
FCC (Class A)
CE, UL, RoHS

3. Virtual appliance

  EPS-ST05A-V EPS-DX05A-V
Supporting virtual platform

VMware ESXi  7.0 / 8.0 
Microsoft Hyper-V (tested on Windows Server 2016/2019/2022)
VMware virtual machine version 13
Virtual machine image OVA (VMWare ESXi) / Installer (Hyper-V)
Number of CPU 4
Memory size 2,048 MB 8,192 MB
HDD 1 1GB 4GB
HDD 2 - 96GB
Network adapter 4

 

  • Supports redundancy with virtual and physical appliance.
  • No support for displacement by using virtual platform function such as vMotion and VMwareFT (use the NetAttest EPS redundancy function)
  • Support back-up/restore between virtual and physical appliance

4. Infrastructure

Diagrams-10

 

5. Download client

Key specifications Soliton KeyManager

Platform: Windows
Operating system version: Windows 11 (Except on ARM) / Windows 10 (Except on ARM)

Platform: Mac OS
Operating system version: 12 / 11
* From macOS 11 or later, manual installing downloaded mobileconfig to [Setting] - [Profile] is required.

Platform: iOS
Operating system version: 16.2-16.0 / 15.7-15.0 / 14.8-14.0

Platform: iPadOS
Operating system version: 16.2-16.1 / 15.7-15.0 / 14.8-14.0

Platform: Android
Operating system version: 13.0 / 12.0 / 11.0 / 10.0 / 9.0

Download information Soliton KeyManager

Platform: Windows

Updated: May 31, 2022
Version: 2.0.9
Size: 10MB
SHA256:731E7C8A876FA0FBDF6D050E103684F11618164BFF8AA37B536C37ACA71C442F
Update Procedure to V2.0.4 or later:
In case updating from V2.0.0 ~ V2.0.2, please make sure to update to V2.0.3 and then update to V2.0.4 or later

Download Soliton KeyManager V2.0.9 Windows

What’s New:

  • Changed the behavior when applying the Wi-Fi profile
  • English translation correction
  • Bug fixes

Platform: Windows

  • Version: 2.0.3
  • Size: 11MB
  • SHA256:206319A2802AE1C57A1DA7A14778D70933689CF00675F0C4A2F8B0FF69559AE9
  • Notice:V2.0.3 is only for update to V2.0.4 or later from V2.0.0 ~ 2.0.2.

Download Soliton KeyManager V2.0.3 Windows

Platform: macOS

  • Updated: August 3, 2022
  • Version: 2.0.5
  • Size: 7.2MB
  • SHA256:34044de99de2eb176db1b7975da1a71965942bec7d4088563fda484c63a28ce7

Download Soliton KeyManager V2.0.5 for MacOS

WHAT’S NEW:

  • Add "Device note" column

Platform: iOS
The application can be downloaded from the App Store

AppStoreBadge_W135_H45

Platform: Android

The application can be downloaded from Google Play

en_badge_web_generic_W135_H40

 

Specifications NetAttest D3

1. General specifications

 

Model Number

D3-SX15-A
D3-SX15-V

D3-ST82-A
D3-ST82-V
DHCP Number of leased IP addresses 2,500 25,000
Number of pool addresses 16,384 150,000
Number of scopes 200 2,000
Number of registered clients 2,500 25,000
Number of static allocations 2,500 25,000
DHCP performance *1 About 1,250 leases/sec About 3,300 leases per/sec
IPv6 compatible Cross_Icon

 

 Tick_Icon

 
DNS Number of records

Primary: 5,000
Secondary: 5,000

Primary: 50,000
Secondary: 50,000
Number of zones 200 1,000
DNS performance *1 About 23,000 queries/sec About100,000 queries/sec
IPv6 compatible

 

Tick_Icon

 

 Tick_Icon
DNSSEC Tick_Icon Tick_Icon
Redundancy DHCP service Tick_Icon Tick_Icon
Network interface *2 Cross_Icon Tick_Icon
Other functions

SNMP (agent), NTP (server)
Syslog output, UPS compatible

*1 This value is the maximum value of the physical appliance measured by Soliton Systems, and varies depending on the configuration and usage conditions
*2 NetAttest D3 physical appliance only

2. Physical appliance

Model Number

D3-SX15-A

D3-ST82-A
Form Factor Desktop type

EIA 19 inch 
Rack mount type
Dimensions (W x H x D) 165 x 43 x 106 mm 443 x 44 x 386 mm
Weight 0.65 kg 7.1 kg
Network interface

10/100/1000BASE-T(X)
automatic recognition 4-ports
(LAN3, LAN4 unused)

10/100/1000BASE-T(X)
automatic detection 4-ports
Power supply

90 ~ 264Vac, 47 ~ 63Hz
(only 90 ~ 135Vac supported)

90 ~ 264Vac, 47 ~ 63Hz
(only 90 ~ 135Vac supported)
Redundant (hot-swappable)
Maximum power consumption 22VA 120VA
Calorific value

75BTU/h
18.9kcal
22W

409.2BTU/h
103.1kcal
120W
Operating environment

Temperature 0 ~ 40ºC
Humidity 20 ~ 90% RH
no condensation 

 
Compliant Standard

VCCI Class B
FCC Class B
CE, UL, RoHS
PSE (power adapter)

VCCI Class A
FCC Class A
CE, UL, RoHS
PSE (power cable)

3. Virtual appliance

Model Number

D3-SX15-V

D3-ST82-V
Supporting virtual platform VMware ESXi 7.0 / 8.0
Microsoft Hyper-V (tested on Windows Server 2016/2019/2022)
VMware virtual machine version 13
Virtual machine image OVA (VMware ESXi) / Installer (Hyper-V)
Number of CPU

2

4
Memory size

2,048 MB

 4,096 MB
HDD

4GB
Network adapter

2
 

Contact us for more information

Get the information you need, answers to any questions and see our solutions in action

Group 1001

Request a Demo

Get answers to your questions, and discover if our solutions are the right choice for you.
Request a Demo
Group 1014

Customer Support

Get answers to your questions, and discover if our solutions are the right choice for you.
Customer Support

If you’re tired of complex network access management and concerned about security, find out more about how NetAttest EPS will help you.