Family-owned Hagleitner has been providing innovative hygiene solutions since 1971. Its product range extends from touch-free soap and paper dispensers with matching refills, to tailor-made dosing systems for washing machines and dishwashers, to highly effective cleaning agents.
- Growing complexity in the network
- High administration effort with small IT team
Reasons for macmon NAC:
- Easy and fast implementation and handling
- Effective network overview
Successes with macmon NAC:
- Successful implementation of dynamic and static VLANs
- Enabling a change of location while continuing operations
- Comprehensive protection of a complex network
Florian Renner (CIO | Chief Information Officer) is responsible for the network at Hagleitner and for ensuring its security.
Working with a team of two employees, he is charged with managing the constant change and increasing complexity in his growing company, which entails the familiar challenges of access control and the time consuming administration of endpoints in the network. These endpoints include manufacturing machinery, security cameras, maintenance routers, time tracking systems and, of course, classic office hardware such as computers, printers and IP telephones.
Because of these challenge especially the need to provide access control for the exploding number of VPN connections the company began searching for a convenient and reliable NAC solution.
At the ACP Forum in Salzburg, Mr. Renner explored various solutions and eventually invited three manufacturers including macmon secure to take part in a practical test. macmon was recommended to Hagleitner by its channel partner Kapsch. The Kapsch Group is a global technology group headquartered in Vienna that has successfully implemented complex NAC projects for its customers.
It quickly became apparent that the solutions offered by macmon’s competitors were much more complex and time-consuming to administer, and that macmon NAC, in addition to its fast and easy implementation, offered the ideal price-performance ratio. Hagleitner was immediately impressed by the convenient and automatic visualization of all network components, which provides a more effective overview of the network. The other features of macmon NAC were tested directly on the live system during a workshop, which lasted less than a day.
macmon passed a second practical test when manufacturing was moved to two new buildings: Hagleitner built a second chemical manufacturing plant in the town of Zell am See, which created 50 new jobs producing disinfectants, cleaning agents and cosmetics. The company also established a new production area for dispensers and dosing devices to complement its existing facilities.
Hagleitner implemented the macmon VLAN Manager, an effective and time-saving management solution for the easy introduction and automated operation of static and dynamic VLAN concepts. This component enables mobile users to access their usual resources from anywhere in the company.
- Over 45 VLANs
- 1,200 clients
- 2,500 network devices
- 2,750 nodes
- Approx. 200 virtual servers
- 27 service centers
- Hagleitner service centers in 12 countries
- Around 200 sales partners in 63 other countries
- 1,240 employees
Hagleitner employs 1,240 people and manufactures its products exclusively at its headquarters in Zell am See. This location offers paper refining, dispenser manufacturing and a chemical production division that is considered the most modern in Europe. With 27 locations in twelve European countries and sales departments in 63 countries, the company is well positioned internationally. In the 2019/20 financial year, it achieved a turnover of 136.5 million euros.
macmon NAC offers a comprehensive overview of all devices in the Hagleitner production network, live inventory management, immediate alerting of unknown devices and initiation of automatic countermeasures. The Advanced Security module records the operating system, domain and name of all endpoints for more accurate identification. When used in conjunction with macmon network access control, this information can help detect, localize and fend off attacks.
Because of the increasing number of cyber attacks on medium-sized companies, increased security is necessary even in Hagleitner’s manufacturing. With its extensive experience, macmon secure is able to guarantee the highest level of security. The company’s security solutions are constantly updated and improved by its inhouse team of developers in Berlin, which provides significant benefits to customers in the long run
Operational Technology (OT) networks have traditionally been separate from IT networks and were relatively safe from cybercriminals due to proprietary protocols, isolated solutions and outdated technologies. However, OT networks are changing and are increasingly exposed to external risks. Companies are realizing that OT networks must also be included in their cyber security strategies in order to implement a comprehensive security concept. With macmon NAC for on-premise networks and macmon SDP for cloud solutions, macmon secure can also provide a centralized offering for the defense against cyberattacks in the OT area.
Florian Renner comments: "OT security has also become increasingly important at Hagleitner in recent years. The reason for this is the strong digitalization in the industry. Some aspects that are particularly important include the separation of productionareas through segmentation, the use of only IT-authorized devices in the network, the restriction of external communication and the protection of remote access for machine maintenance by manufacturers. In principle, there are of course many points of contact between IT and OT security and I see an increasing blurring here. While the focus is often still on physical access protection for factory halls, protection against cyber criminals is becoming increasingly important as the previously separate worlds grow ever closer together. Examples of such points of contact are routers, remote devices and IoT hardware such as sensors or actuators. The particular challenges of OT security include the separation of internal machine networks and the IT network, remote access and the use of different protocols than in traditional IT."