endian switchboard 6
TRANSCRIPT
Secure everyThingwww.endian.com
Endian Switchboard 6.0The Secure Digital Platform for Predictive Maintenance
The Endian Switchboard is the heart of the Endian Secure Digital Platform that provides secure remote access to field equipment, data collection and visualization, edge computing and powerful user and device permission management. The Switchboard can be deployed anywhere (on-premise or cloud) and on any platform (hardware or virtual) and is the only solu-tion to include comprehensive security features throughout the platform.
Number Of Containers
8
Network Throughput
7.39 kBs0.24%
CPU Usage
3.53%
Memory Usage
min max avg current
mqtt_emqx.1.p2cmns35iprc0xpdx1fr5gk6f 0.88% 45.84% 24.95% 8.39%
database_telegraf.ndti5uwtevgoby80hjzd10jhr.in7l3qbtwyxcwm1gl1mxholz6 0.14% 1.54% 0.93% 0.93%
infra_etcd.1.yhylomajai5lrp1lv13n93bao 0.61% 1.75% 1.12% 0.77%
dashboard_grafana.1.z2jivzhip27lxwu3bxudxwse2 0.03% 3.96% 0.20% 0.13%
dashboard_grafana-syncronizer.1.u4gjls5v3k6t3if4x9znwyl1g 0.10% 0.23% 0.12% 0.11%
50%
40%
30%
20%
10%
0%13:30 13:40 13:50 14:50 14:10 14:20
Docker CPU Usage by Container
12.5%
10.0%
7.5%
5.0%
2.5%
0%13:30 13:40 13:50 14:00 14:10 14:20
datebase_influxdb.1.csj54znr4fzigtrbpjwv7jmfz
mqtt_emqx.1.p2cmns35iprc0xpdx1fr5gk6f
dashboard_grafana.1.z2jivzhip27lxwu3bxudxwse2
dashboard_grafana-syncronizer.1.u4gjls5v3k6t3if4x9znwy
database_fluxit-v1.ndti5uwtevgoby80hjzd10jhr.9ctbaozhtf
Docker RAM Usage by Container
Sent Network Traffic per Container Received Network Traffic per Container Remaining Memory MemoryUsage
Metric Available Metric Usage?
Docker Last 1 hour 10sSwitchboard Virtual ApplianceVersion 6.0.0
Dashboard
Connections
Map
Analytics
Users
Devices
Applications
Statistics
Statistics
admin?
Integrated Data Analytics
New Complete Branding Control
Highlights Industries
New User Interface
Integrated Data Analytics
New Connect App
New Complete Branding Control
Improved High Availability
Stronger Foundation (EndianOS 6.0)
Manufacturing
Smart factories
Healthcare
Critical infrastructure
Maritime
Endian Switchboard 6.0 Tech Specswww.endian.com
© 2
020
Endi
an S
RL. S
ubje
ct to
cha
nge
with
out n
otic
e. E
ndia
n an
d En
dian
UTM
are
trad
emar
ks o
f End
ian
SRL.
All
othe
r tra
dem
arks
and
regi
ster
ed tr
adem
arks
are
the
prop
erty
of t
heir
resp
ectiv
e ow
ners
.
Endian Switchboard 6.0 Tech Specs Centralized Management
Support for• On-Premise: Run the Switchboard on an
Endian virtual or hardware appliance in your own infrastructure
• Cloud Hosted (by Endian): Switchboard server is provided by Endian and connect your own users, devices and endpoints
On-Premise• Multi-tenancy option with support for sub-or-
ganizations• Each organization can have its own branding
which includes management portal, Connect Web and Connect App
• Full control over OpenVPN server, modes and options
• OpenVPN fallback support through multi-server configuration
• Virtual IP support for simultaneous connec-tions to endpoints with the same IP address
• Virtual IP pool(s) configurable globally or per organization
• Support for multiple authentication backends (Local, LDAP, Active Directory, and RADIUS)
• Integrated support for one-time passwords through TOTP (Time-based One-Time Password)
• Support for VPN connection health check (interval and timeout)
Cloud-Hosted• OpenVPN fallback support available (TCP 443
& UDP 1194)• Virtual IP support for simultaneous connec-
tions to endpoints with the same IP address• Integrated support for one-time passwords
through TOTP (Time-based One-Time Password)• Hosted in Amazon Web Service (AWS) for
performance and reliability
Remote Access• Secure connections through SSL VPN (OpenVPN)• Connect with a single click to endpoints,
gateways or entire remote networks• View connection status for all devices (online/
offline)• View which user(s) are connected to an
endpoint/gateway• Expand/collapse view of endpoints for custom
views (or apply to all)
• Use either Connect App or Web to connect: • Connect App: VPN client software which
offers full network access and support for integrated and external applications
• Connect Web: Web-based client that supports integrated applications and works on any platform (with HTML5 browser)
Connect App• Native client available for Windows and Mac OS X• Run any locally installed application by pro-
viding path to executable/binary and variable parameters to include
• App views restricted based on user permissions• Option to start automatically on computer
start-up• Automatic reconnection on failure• Support for connection through HTTP proxy
(Basic/NTLM auth)• Connection profile management for both
Switchboard and OpenVPN connections• Integrated log viewer with ability to export to
file/clipboard
Connect Web• Web-based client (requires HTML5 browser only)• Supported on virtually any platform including
Windows, Mac OS X, Linux, iOS, Android and more• Integrated applications (RDP, VNC, SSH, Tel-
net, HTTP, HTTPS) run inside the browser and require nothing to be installed on client
• Manage users, devices, applications and organizations from within the client
• App views restricted based on user permissions
Analytics & Data CollectionAnalytics• Create unlimited dashboards to create unique
visualizations of data from remote sites• Each dashboard is completely customizable
in terms of the types of widgets (components) to display:
• Graphs• Charts• Tables• Gauges• Maps• Interactive images
• Perform data transformations on data to utilize within each dashboard widget (component)
• Access to dashboards are definable using the user permissions for granular control
• Each Endian gateway will have its own dashboard created automatically to monitor system status
• All remote data is stored in a secure and scalable database
Data Collection• Collect unlimited SCADA data points using
supported protocols including Modbus (TCP/RTU), OPCUA, Siemens S7 and MQTT
• Secure VPN connection between Switchboard and remote Endian devices ensures all data is transmitted securely over encrypted channel
• Data can be collected over Ethernet or direct Serial connection. Supported serial protocols include RS-232, RS-422, RS-485
• Data will be buffered on the remote Endian gateway in the event of connectivity loss
User & Group Management• Support for individual users and/or user
groups• User can be member or administrator of
unlimited user groups• User can connect to single device or all devic-
es in device group• Integrated password management allows
users to set (initial) and reset password on their own
• Permissions:• Superuser (Admin)• Access to sub-organizations• User group management• Device group management• Application management• Organization management• Analytics management• Analytics view (only) access• API access• Direct access to application(s)• Network routes to Switchboard
• Endian Network account data for gateway registration (provisioning)
Endian Switchboard 6.0 Tech Specswww.endian.com
© 2
020
Endi
an S
RL. S
ubje
ct to
cha
nge
with
out n
otic
e. E
ndia
n an
d En
dian
UTM
are
trad
emar
ks o
f End
ian
SRL.
All
othe
r tra
dem
arks
and
regi
ster
ed tr
adem
arks
are
the
prop
erty
of t
heir
resp
ectiv
e ow
ners
.
Device & Group ManagementSupport for• Gateways: Network devices connecting via
VPN (OpenVPN required) and/or• Endpoints: Any IP-enabled devices that can
be (a) connected to a gateway or (b) directly connected to Switchboard via Connect Agent
Gateways• Automatic account creation for each gateway
created• User and user group permissions manage-
ment (connect/manage)• Advanced custom action policies (ACAP) to
provide granular control over permissions between users, endpoints and applications
• Gateway can be a part of unlimited number of device groups
• Assign to specific organization or sub-organ-ization
• Manual device (gateway) creation or create via provisioning
• Assign endpoints which are connected to gateway
• Port forwarding to support redirecting field equipment communications to central site
• Exportable logs in CSV format
Endpoints• Support single or millions of endpoints per gateway• Support for using virtual or real IP addresses• Support for endpoints without default gate-
way (SNAT)• Assign application profile (group) per endpoint• Exportable logs in CSV format
Application & Group Management• Support for defining access to any application• For each application definition specify inte-
grated vs external• Integrated applications (RDP, VNC, SSH,
Telnet, HTTP, HTTPS)• Support for advanced options of integrated
applications• Custom applications for both Windows & Mac• Support for any TCP, UDP, TCP+UDP application• Support for profiles which are groups of
applications• Profiles can be assigned individually to each
endpoint
Organization Management• Support for parent and sub-organizations• Each organization has its own set of users,
gateways, endpoints, applications and settings
• Each organization can have its own branding which includes management portal, Connect Web and Connect App
• Define exclusive access option on gateway or endpoint level (or leave disabled) per organization
• Define max number of users per organization• Define max number of gateways per organization• Enable API access per organization• Define Endian Network registration per
organization• Choose to add default application/profiles per
organization
API Management• Secure API using HTTPS and authentication• Additional API token required for all requests• Can be enabled globally or per-organization• Superuser API for full read/write access• User API for restricted access• Activate or deactivate user/gateway connections• Activate or deactivate user/endpoint connections
ProvisioningSupport for• Plug & Connect: To remote deploy gateways
over the Internet• USB Stick: To remote deploy using USB stick
in the gateway
Plug & Connect• Allows any Internet-connected remote
gateway or endpoint to automatically create secure connection to the Switchboard
• Supports automatic Endian Network registration• Define remote Endian appliance passwords• Define remote Endian WAN, LAN and DMZ
networks• Define port forwarding and Source NAT rules• Define custom OpenVPN server IP, port and
protocol• Define OpenVPN tunnel over HTTP proxy• Supported by Endian hardware, software or
virtual appliances• Supported by Endian Connect Agent
USB Stick• Allows any Endian hardware appliance to re-
ceive basic networking info and automatically create secure connection to the Switchboard
• Supports automatic Endian Network registration• Define remote Endian appliance passwords• Define remote Endian WAN, LAN and DMZ
networks• Define port forwarding and Source NAT rules• Define custom OpenVPN server IP, port and
protocol• Define OpenVPN tunnel over HTTP proxy