eyeExtend for VMware® Carbon Black
Fortify endpoint defenses and proactively combat threats
- Developer
- Forescout
Fortify endpoint defenses and proactively combat threats
Forescout eyeExtend for VMware® Carbon Black orchestrates information sharing and security workflows between the Forescout platform and Carbon Black to improve device hygiene, proactively detect threats across the entire network and automate threat response. Leveraging the real-time device discovery, classification and assessment provided by Forescout eyeSight, eyeExtend for Carbon Black notifies Carbon Black as soon as a device connects to the network. This enables Carbon Black to bring more devices under its endpoint protection management and detect threats across the entire enterprise attack surface.
Features and Benefits
Improve device security coverage and compliance
The Forescout platform continuously verifies that Carbon Black Response sensor and Carbon Black Protection agent are installed,
running and operating properly on managed corporate devices. When new devices connect to the network, the Forescout platform informs administrators on the agent status of the devices. If a connecting device does not comply with the security policy, the
Forescout platform notifies the administrator and facilitates remediation by redirecting users to a self-help page for agents
installation. Devices that leave the network are verified when they reconnect to enforce compliance.Leverage shared threat intelligence to maximize joint threat hunting and detection
When Carbon Black identifies malware and IOCs on managed devices, it immediately notifies Forescout eyeExtend for Carbon
Black. The Forescout platform extends this threat intelligence to the entire network and monitors unmanaged connected systems
such as BYOD, guest and IoT devices for IOCs. Based on your security policies, the Forescout platform can restrict, isolate or block
network access for compromised devices in real time.Accelerate and automate policy-driven threat response
Carbon Black informs Forescout eyeExtend for Carbon Black upon malware or threat detection on a device. Based on threat
severity and the security policy, the Forescout platform can automatically take appropriate actions, such as restricting, isolating
or blocking compromised devices, and initiating remediation workflows. The Forescout platform’s network control actions reduce
your mean time to respond and limit the impact of threats.
Agentless Visibility
Get complete device visibility without requiring agents.
Device Verification
Verify that devices have Carbon Black agents properly installed and operational at all times.
Threat Intelligence Sharing
Share threat intelligence to hunt for indicators of compromise (IOCs) across managed and unmanaged devices.
Dynamic Network Access Control
Dynamically control network access by isolating, restricting, or blocking compromised devices in real-time.
Additional Information
Support
EyeExtend modules are fully supported by Forescout. Please see support details at https://www.forescout.com/resources/activecare-maintenance-and-support-policy/
- Phone: +1-866-377-8773
- Knowledge Base
- Read Documentation
Categories
-
App Type
-
Built By
-
Licensing Category
-
Works With
Resources
Forescout eyeExtend for Carbon Black® Fact Sheet
Download PDF