ACW Distribution

MFA enhances account security of data center infrastructure, networks and business systems by combining OTP with static password.

MFA多因素认证

通过MFA多因素认证，在静态账号密码的基础上增加一层动态口令防护，提升数据中心基础设施、网络及业务系统的账号安全。

Protect your accounts

With Nington MFA, you can address unauthorized access from password theft to improve account security either by combining OTP with static password, or by scanning registration, biometrics, mobile app push and other methods.

保护企业的账号安全

通过宁盾的多因素身份验证，在原本静态账号口令的基础上增加一层动态口令，或借助“扫一扫”、企业微信/飞书/钉钉消息通知、无密码认证、手机APP推送等提升账号安全，有效解决静态密码被窃取后导致的非授权访问问题。

Compatible with various account sources and devices

Nington’s MFA server is compatible with various network devices, operation systems, bastion hosts, websites and apps. It also seamlessly supports AD/LDAP account sources, built-in Web account sources, and other features for quick alignment, without changing the existing account management mode.

兼容各类账号源和设备

宁盾多因素身份认证服务器能够兼容各类网络设备、操作系统、堡垒机、网站及应用，平台可无缝支持AD/LDAP账号源、Web内建账号源等、无需改变现有的账号管理模式，快速实现对接。

Unified authentication, authorization and accounting of network device administrators for multi-brand devices to secure highly privileged accounts.

网络设备AAA管理

多品牌网络设备下对网络设备管理员做统一的认证（Authentication）、授权（Authorization）、审计（Accounting ），确保企业高权限账号的安全。

Unified authentication management of device administrators

You can centralize account creating for device administrators, set the login password, expiration time, legitimate number of online users and other conditions in batches to manage password permissions. With support for local and multiple user sources, including LDAP, AD, POP3, RADIUS, etc., you can quickly and easily unify management.

设备管理员统一身份认证管理

支持对设备管理员集中开户，可批量设定设备管理用户的登录密码、失效时间、在线数量等来管理密码权限，支持本地及多种用户源，包括LDAP、AD、POP3、RADIUS等，快速便捷实现统一管理。

Compatible with different types/brands of network devices

Compatible device types include switches, routers, firewalls, WAFs, etc. By extending Tacacs+, Radius and other protocols, the product can be adapted to devices of mainstream vendors, such as Cisco, Huawei, and H3C, to achieve unified management for heterogeneous systems across brands.

兼容不同类型/品牌网络设备

支持设备类型包括交换机、路由器、防火墙、WAF等，通过扩展Tacacs+、Radius协议等适配主流网络厂商设备，如思科、华为、华三等，实现多品牌异构统一管理。

Wired and wireless network authentication supports identity authentication for employees, visitors, outsourcers and other roles to access and ensures access security of your office networks.

有线无线网络认证

通过802.1X认证或portal上网认证方式对员工、访客、外包等不同角色提供接入网络的身份认证，确保企业办公网络接入的安全。

Unified network authentication for employees and guests

Identify employees, guests and outsourcers to meet their authentication needs for wired/wireless network respectively. Nington helps you decide role-based access rights and supports unified multi-branched authentication, authorization, and accounting as well as seamless roaming.

员工、访客统一接入网络认证

区分员工、访客、外包人员，满足不同角色的有线无线上网认证需求，针对不同的用户身份，可设置不同认证方式，如802.1x认证、Portal认证，分配不同的上网权限。并且支持多分支有线无线统一认证、授权、审计和无缝漫游。

Compatible with devices from different vendors/brands

Nington’s authentication products are compatible with devices from different vendors and brands at home and abroad, including Cisco, Aruba, Meraki, Huawei and H3C, supporting integrated access management.

兼容不同厂商/品牌网络设备

宁盾有线无线网络认证兼容国内外不同厂商、不同品牌的有线无线网络设备，如Cisco、Aruba、Meraki、华为、H3C等，统一接入管理。

NDS upgrades the transformation from Microsoft Active Directory to localized identity directory services, and supports the unified identity management of localized operating systems and business systems.

身份域管（信创版）

NDS 升级了从 Microsoft Active Directory 到本地化身份目录服务的转换，并支持本地化操作系统和业务系统的统一身份管理。✓安全   ✓可靠   ✓易扩展

Unified authentication of Kylin, UOS and Windows

In companies where Kylin, UOS, and Windows endpoints are adopted at the same time and cannot be managed in a centralized way, NDS can help achieve unified identity authentication of different endpoints and consolidated user management.

Kylin、UOS 和 Windows 的统一身份验证

在同时采用 Kylin、UOS 和 Windows 终端且无法集中管理的公司中，NDS 可以帮助实现不同终端的统一身份验证和统一的用户管理。

Unified LDAP authentication

LDAP-supported applications can be seamlessly connected to NDS in scenarios like office (Coremail/OA/ERP/network drive), R&D (Gitlab/JIRA), network equipment administration (VPN/bastion host/network management platform/virtual desktop) and so on, without additional development or transformation. NDS enables identity sync via LDAP protocol, along with identity authentication and verification.

统一 LDAP 身份验证

支持 LDAP 的应用程序可以无缝连接到 NDS，适用于办公（Coremail/OA/ERP/网络驱动器）、研发（GitLab/JIRA）、网络设备管理（VPN/堡垒机/网络管理平台/虚拟桌面）等场景，无需额外开发或改造。NDS 支持通过 LDAP 协议进行身份同步，并提供身份验证和认证功能。

Support existing 802.1x-enabled access system

NDS can store and take over user identities for account verification of 802.1x-enabled network access authentication targeting heterogeneous endpoints on Kylin, UOS, and Windows. Compatible with your existing mainstream access products, NDS supports seamless migration from your existing AD.

支持现有的 802.1x 接入系统

NDS 可以存储并接管用户身份信息，用于对 Kylin、UOS 和 Windows 等异构终端进行 802.1x 网络访问身份验证的帐户验证。NDS 与您现有的主流访问产品兼容，并支持从现有 AD 无缝迁移。