ENF Features

Introduction

The Xaptum ENF is composed of several integrated, logical components that provide the functionality, security, and management of the network. Each of the components provides a set of features that can be controlled via an API or the ENF command line interface (enfcli) tool.

User Management

The User Management feature allows domain administrators to activate/deactivate users, add/modify their permissions, etc. deactivating/activating users, etc.

Network Control

The Network Control feature manages domains and customer subnets. Each customer is assigned a private /48 domain. From there, each customer may create 65,535 /64 subnets. This allows the use of microsegmentation to compartmentalize access and risk.

Identity and Access Management (IAM)

The IAM manages devices that connect to the ENF. Similar endpoints can grouped together, allowing easy management of thousands of them simultaneously. Admins can associate an entire group to a particular network in one step or manually manage access credentials for invidual endpoints like backend servers.

Firewall

The Firewall feature allows admins to open paths between devices and servers. The ENF employs a default-deny approach. Unless expressly configured by the customer, communication paths are blocked – even on the same subnet. Both inbound and outbound rules are supported. Rules can be applied to multiple devices and subnets at once based on how the network has been microsegemented.

DNS

The ENF provides a private DNS service to make management easier than with IPv6 addresses. The configured domain names are indepedent of the public DNS system and completely private within each domain.

Captive Server

The Captive Server provides remote management for ENF router card capabilities, including WiFi configuration and firmware updates. Many router cards can be managed as a single group by sharing a common configuration called a device profile.

The schedule for firmware updates is fully configurable to minimize operational downtime. This capability allows phased, off-peak updates router cards. For example, you can schedule 20% of the cards to update between 1 A.M. Saturday and 3 A.M. Monday. The service tracks which cards have been upgraded and can safely handle intermittent connections or power losses.

Didn't find what you were looking for?

Contact us and we’ll get back to you as soon as possible.

Contact Us