NetAttest EPS:

Complete Network Access Control Without the Management Headaches

Network access control doesn’t have to be hard.

Network administrators and IT departments often see access control as a burden. NetAttest EPS changes that perception. Easily implement network access control and provide users with the most convenient solution on any device or operating system.

NetAttest EPS is a complete, port-based network access solution and uses the IEEE 802.1X standard to act as an authentication and authorisation server. It's ideal for protecting both large networks and small networks, in one location or many, and it protects the wire, WiFi and VPN.

Protect your network from unauthorised access
Mitigate against breaches and costly data loss
Deploy certificates for both user and device authentication
Authorise user access to permitted network resources

Download Product sheet

An all-in-one solution

NetAttest EPS has everything you need for complete network access control, right out of the box. It’s vendor-agnostic and easily integrates with almost all third-party products, reducing the overall costs and making it vendor-agnostic at the same time

Authentication, authorisation, and accounting for user resource requests
EAP authentication including MAC address, one-time passwords, and certificate-based authentication
Acts as a dedicated or subordinate certificate authority and integrates with existing Public Key Infrastructures

802.1X WLAN access control

NetAttest EPS makes WLAN access control as simple and powerful. Guests, temporary employees or contractors can use the self-service portal to request temporary access to the WiFi.

Includes self-service portal for temporary WiFi access (ideal for guests, contractors, and temporary employees)
Directs users to specific network resources
Provides an internal temporary access user database

Full backup and redundancy

You’ll gain ultimate peace of mind with a super-fast, integrated backup and restore process. NetAttest EPS can also create redundant installations using RADIUS servers to provide a contingency for certificate authority (CA) issues.

Full backup completes in less than 20 seconds
Full restores take just 100 seconds
Full configuration (including CA configuration) automatically shared daily between redundant installations

Key Manager: 3-step certificate administration

The Soliton Key Manager app makes it easy for network administrators to use short-life certificates for enhanced security. The application offers a user-self-service to request and install user and device certificates automatically on any device in just three steps. The Soliton Key Manager app sends the user a warning to renew the certificates when users click the link to renew the certificate.

Benefits

Reduces time spent on certificate management by the IT team
Adds security to the Simple Certificate Enrolment Protocol (SCEP) via a unique secret per request
Enables both public and private keys to be generated
Exporting the key is impossible, thanks to the way it is stored

White Paper

Find out how NetAttest EPS will help you review your corporate wireless LAN security.

Download the Security paper

Certificate Authority

NetAttest EPS prevents unauthorised network access with straightforward and powerful certificate management tools.

Self-service web portal for users to request and download certificates
Online certificate status protocol responder for easy checking of certificate revocation
Support for MDM systems and third-party device certificate authentication
Customizable certificate signing request templates for extended key usage and validity and renewal periods
Support for special-purpose certificates (Windows SmartCard, Code Signing, and more)

MAC address authentication

NetAttest EPS provides a dedicated database for MAC addresses to simplify the process of managing non-802.1X devices.

Provides all the tools needed for quickly adding new devices to your network
A dedicated, secure MAC address database
Storage for up to 200,000 MAC addresses
Automatically detects non-802.1X devices and adds them to a whitelist
Dedicated interface for registering new MAC addresses

Any device, any platform - same process

NetAttest EPS provides a fully unified deployment process to allow for easy distribution of certificates. The process always remains the same, no matter the device or platform.

Uses the Soliton Key Manager for distribution and installation of certificates
The deployment process remains the same, regardless of the device or operating system
A proxy server handles all SCEP requests and offers additional security
Support for Apple devices with Over-The-Air (OTA) protocol
MDM features, including remote locking, password prerequisites, and remote device wipe

Customer Stories

Don’t just take our word for it — read what our customers have to say.

Sumitomo Besshi Hospital

Discover how Sumitomo Besshi Hospital, the largest hospital in the Toyo District, used Soliton’s NetAttest EPS to strengthen network security with endpoint authentication.

COOP

Find out why COOP selected Soliton’s NetAttest EPS and SecureBrowser to help protect highly sensitive customer information and prevent data leakage.

Specifications Netattest EPS

Specifications

		EPS-SX15-A & EPS-SX15-V	EPS-ST05-A & EPS-ST05-V	EPS-DX05-A &EPS-DX05-V
	Max. number of user registration	200	200 / 500 / 2,000 / 5,000	100,000
	Max. number of RADIUS clients	20	500	1,000 / 4,000
	Supporting authentication protocol	EAP-TLS, EAP-MD5, EAP-PEAP (MS-CHAPv2, GTC, TLS), EAP-TTLS (PAP, CHAP, MS-CHAP, MS-CHAPv2, GTC, EAP-MSCHAPv2, EAP-TLS), Cisco-LEAP, EAP-FAST, PAP, CHAP, MS-CHAP, MS-CHAPv2
	Redundancy
RADIUS EXTENSION	One Time Password
	MAC address authentication option
	Group profile
Certificate Authority (CA)	Client certificate publish
	External server certificate publish
	Max. number of certificates		400/1,000/4,000/10,000	200,000
	Extended CA function
External database	Windows Domain
	External LDAP database
	RADIUS proxy
Log manage- ment	RADIUS accounting
	RADIUS detail accounting
	Log maintenance
	Other	SNMP (agent), NTP synchronisation, Syslog (TCP/UDP), Support UPS

Physical appliance

	EPS-SX15-A	EPS-ST05-A	EPS-DX05-A
Form Factor	Desktop (option rack mount kit)	EIA19 inch (incl. rack mount kit)	EIA19 inch (incl. rack mount kit)
Dimensions (W x D x H)	165 x 43 x 106 mm	438 x 44 x 292 mm	443 x 44 x 386 mm
Network interface	10/100/1000BASE-T(X) Auto-MDI-X x 4 ports	10/100/1000BASE-T(X) Auto-MDI-X x 4 ports	10/100/1000BASE-T(X) Auto-MDI-X x 4 ports
Weight	0.65 kg	4.2 kg	7.3 kg
Power supply	90 ~ 264VAC 47 ~ 63Hz (90 ~135Vac)	90 ~ 264VAC 47 ~ 63Hz (90 ~135Vac)	90 ~ 264VAC 47 ~ 63Hz (90 ~135Vac)
Max. power consumption	22 VA	28 VA	120 VA
Calorific value	75BTU/h 18.9kcal 22W	95.5BTU/h 24.1kcal 28W	409.2BTU/h 103.1kcal 120W
Operating environment	Temperature 0 ~ 40°C Humidity 20 ~ 90% non-condensing
Certifications	VCCI (Class B) FCC (Class B) CE, UL, RoHS PSE (power adapter)	VCCI (Class A) FCC (Class A) CE, UL, RoHS PSE (power cable)

Virtual appliance

	EPS-SX15-V	EPS-ST05-V	EPS-DX05-V
Supporting virtual platform	VMware ESXi 7.0 / 6.7 / 6.5
VMware virtual machine version	10
Virtual machine image	OVA
Number of CPU	2	4	4
Memory size	2,048 MB		8,192 MB
HDD 1	2GB	5GB	96GB
Network adapter	4

Supports redundancy with virtual and physical appliance.
Support back-up/restore between virtual and physical appliance
No support for displacement by using virtual platform function such as Vmotion and VMwareFT (use the NetAttest EPS redundancy function)

Options

	MODEL	OPTION LICENSE	DESCRIPTION
OP1	EPS-ST05	User extended option (500)	• Extend maximum number of user registration
OP2	EPS-ST05	Function extended option (2,000)	• Extend maximum number of user registration • Enable Windows Domain authentication • Group Profile
OP3		Function extended option (5,000)
OP4	EPS-SX15	Windows Domain option	• Enable Windows Domain authentication
OP5	EPS-DX05	RADIUS Client extended option	• Extend maximum number of RADIUS Client
OP6	EPS-DX05	MAC Address extended option	• Enable MAC Address authentication with dedicated DB (maximum 200,000 addresses are registrable)
OP7	EPS-ST05
OP8	EPS-SX15
OP9	EPS-DX05	CA Extended option	• Enable certificate distribution by Web enroll • Enable certificate distribution by SCEP enroll • Enable publishing Windows Smart Card logon certificate • Execute certification profile
OP10	EPS-ST05	CA Extended option (200)
OP11		CA Extended option (500) * User extended option (500) is required to be purchased together
OP12		CA Extended option (2,000) * Function extended option (2,000) is required to be purchased together
OP13		CA Extended option (5,000) * Function extended option (5,000) is required to be purchased together
OP14	EPS-DX05	One-Time Password server option	• Enable One-Time Password function
	EPS-ST05
	EPS-SX15

Infrastructure

Download Client

Key specifications Soliton KeyManager

Platform: Windows
Operating system version: Windows 10 (Except on ARM) /Windows 8.1 (Except RT)

Platform: Mac OS
Operating system version: 11 / 10.15 / 10.14
* except Apple M1 chip machine
* From macOS 11 or later, manual installing downloaded mobileconfig to [Setting] - [Profile] is required.

Platform: iOS/iPadOS
Operating system version: 14.4-14.0 / 13.7-13.1 / 12.4-12.0

Platform: Android
Operating system version: 11.0 / 10.0 / 9.0 / 8.1-8.0 / 7.1-7.0

Download information Soliton Key Manager

Platform: Windows

Updated: February 9, 2021
Version: 2.0.6
Size: 11MB
SHA256：5792D90721C762485189A5C36C18006ED85293853E87BD913D0502D6811A5B81
Update Procedure to V2.0.4 or later:
In case updating from V2.0.0 ～ V2.0.2, please make sure to update to V2.0.3 and then update to V2.0.4 or later