SNMP - Secure Network Management Protocol?
So I just finished training our sales team on our Safe Access. As part of our training, we went over strengths and weaknesses of our product and our competition. One area where I think Safe Access has a distinct advantage over other NAC products, is we do not rely on SNMP to perform quarantine or port-level control. I think 802.1x is a much more elegant, secure and functional standard. If you don't have 802.1x, I think there are other means of performing NAC that don't expose you to the risk that SNMP does. Mitchell Ashley, our CTO and myself dived pretty deep on this with the sales team.
I was amazed at some of what I heard from the salespeople. One salesperson told us he had brought this same argument up to a university security admininstrator. Who told him flat out, hey I am putting NAC in, isn't that enough. I don't care if SNMP is not secure. Another one told us that a potential customer told him not to worry, their Cisco NAC solution used the "secure" SNMP version 2. Of course their friendly Cisco rep didn't tell them that that version of SNMP is a Cisco only version and won't work on non-Cisco gear. However, the best was a customer who was told by one of our competitors that SNMP stood for Secure Network Management Protocol, instead of Simple Network Management Protocol! Of course this guy could not understand why using a secure protocol what issue there could be. Lots of misinformation out there.
Comments