The Latest Cato Network News
Product and Solution Information, Press Releases, Announcements
|Cato Revolutionizes SD-WAN with Identity-Aware Routing|
|Posted: Wed Jul 18, 2018 09:19:06 AM|
July 18, 2018
Today, Cato introduced the first, identity-aware routing engine for SD-WAN. Identity awareness abstracts policy creation in Cato Cloud from the network and application architecture, enabling business-centric routing policies based on user identity and group affiliation. It headlines a series of SD-WAN enhancements we’re making today to Cato Cloud. You’ll be able to learn more about identity awareness and see those improvements in action in our upcoming webinar when director of product management, Eyal Webber-Zvik, and I demo Cato Cloud.
Problems of Routing
Enterprises have long sought to make networking easier — easier to configure, easier to deploy and easier to manage. Essential to that goal has been abstracting network policy definition to better mirror business context.
Legacy networks route traffic based on IP address or subnet, information that bears little resemblance to the business. Policies are, in effect, machine-aware, treating a device’s application traffic the same even when network requirements vary greatly. While SD-WANs made application-aware routing a reality, we remain limited by their lack of granularity, unable to accurately reflect business context in our networks.
Identity awareness transforms routing
Identity-awareness completes the evolution of routing by steering and prioritizing traffic based on organizational entities — team, department, and individual users. Adding identity attributes to networking policies allows Cato to deliver:
With identity-aware routing, business-critical voice calls, such as from executive or sales, can be prioritized over other calls; file transfers, normally given low priority, can be prioritized when involving business-critical processes, such as financial transactions in a financial institution.
Cato implements identity-aware routing seamlessly without changing the network infrastructure or the way users work. Microsoft Active Directory (AD) data is dynamically correlated across distributed AD repositories, and real-time AD login events to associate a unique identity with every packet flow. Organizational context, such as groups and business units, is derived from the AD hierarchy.
Real-time Analytics and Other SD-WAN Enhancements
In addition to identity awareness, Cato introduced or enhanced numerous Cato Cloud SD-WAN capabilities including:
“We founded Cato on the premise that IT needed a new kind of carrier, one where simplicity isn’t just a mission statement but part of the company’s DNA,” says Shlomo Kramer, co-founder and CEO of Cato Networks. “Identity awareness adds business context to our end-to-end, converged and secure MPLS alternative, making it easier and simpler for IT to align with today’s dynamic business requirements and deliver an optimal user experience, everywhere.”