Forescout Device Compliance

Forescout Device Compliance is a network access control solution that continuously monitors and enforces compliance across all connected devices in an organization's network. The platform addresses compliance requirements by providing visibility into managed and unmanaged devices, including IoT, IoMT, and OT/ICS systems. The solution uses agentless discovery methods combined with passive monitoring, active scanning, and third-party integrations to assess device compliance status. It leverages deep packet inspection of over 250 protocols to identify and classify devices using more than 150 classification attributes. This enables assessment of device configurations, patch status, and security posture without requiring agents on endpoints. The platform supports policy-based remediation that automatically initiates risk mitigation actions through integration with existing security tools. It correlates compliance and configuration data with risk and exposure information to help prioritize remediation efforts. The solution provides documentation capabilities to support regulatory compliance audits. Forescout Device Compliance is deployed in U.S. federal cybersecurity programs including Continuous Diagnostics and Mitigation (CDM) for civilian agencies and Comply to Connect (C2C) for the Department of Defense. The platform offers flexible deployment options including on-premises appliances, virtual machines, Docker containers, air-gapped systems, and cloud-based configurations. Sensors can be deployed as standalone appliances or installed directly on network infrastructure.