Senforce enforces client security wisely
Enterprise Mobile Security Manager arms admins with flexibility to tailor group policies
For all of its impressive features, EMSM is not a perfect product. Creating your policies is not an intuitive process, although there are some wizards to step you through it. I felt like I was constantly jumping back and forth between settings to get my policy created. Also, the client-side application runs as a service under Windows 2000 and XP. If your users have local administrative rights to their PCs, they can stop the service and thereby circumvent the policy enforcement. Both of these problems are being addressed in an upcoming release of EMSM due early in 2005.
Senforce Enterprise Mobile Security Manager is a great tool for managing your end-point security from a single, centralized location. The level of granularity in the Policy Editor is first rate; I can’t imagine a situation it cannot handle. It is flexible yet ultimately in control of not only which network services a client can use but on which types of network they can use them. Problems with the management interface and client service are already being addressed, so Senforce should be on your short list of end-point integrity tools.