Only Symantec's Security Center failed to block these two Trojans. Symantec's product does include an antivirus program that could detect and purge widespread Trojans. However, this solution is reactive instead of proactive.
All the products we tested require a lot of administrative time, so an easy-to-use feature-management interface is key to reducing the TCO (total cost of ownership). Tiered administration, for example, lets you create admins for groups of users and delegate responsibilities. Using such a feature, you can create an admin to monitor the logs for potential attackers and another to manage the accounting group. We also examined a management server's high availability and load-balancing capabilities. Securitae CMDS, Symantec Security Center and Sygate Management Server have high availability.
With so many hardware and software layers, a secure network can become a quagmire without the right tools to tie everything together. We judged the products' integration capabilities, based on support for third-party security products, multiple policies and networks, and directory services. Sygate Management Server offers the best integration capabilities in these areas.
Likewise, the ability to set multiple policies based on location is a plus. We considered this an integration issue because the multiple policies affect users that roam across networks or need access to certain ports/programs while a VPN is active. Sygate's product excelled in its integration with supported VPN and antivirus products. You can create multiple policies more easily in Sygate Management Server than in any of the other programs we tested. This is useful if you want to set separate policies for people on the corporate network, on VPNs and using wireless.
For directory services, we evaluated if the products support user and group information from Active Directory, LDAP, RADIUS and NT domains. In this category, Zone Labs' Integrity excelled.