Built for environments where security isn't optional.

We supply the products that meet the security and compliance requirements of Singapore’s government, defence, banking, and broadcast environments.

Certification Frameworks

Manufacturer Partners

10+

Authentication Standards

NIAP-listed Product Ranges

Security at the product level, not just the marketing level.

When procurement teams audit your infrastructure choices, they ask specific questions: “Does it support Entra ID?”, “Is the cryptographic module FIPS validated?”, “Can it isolate classified networks?”. The brands we distribute were selected because they answer those questions in writing. Below is what each product line supports, sourced from the manufacturer’s own technical documentation.

Identity, Authentication & Access Control

Integration with your existing identity infrastructure — directory services, federation, multi-factor, and privileged-access workflows.

LDAPLDAPSRADIUSTACACS+Active DirectorySAML 2.0Microsoft Entra IDAzure ADOktaKerberosSSOSmart Card / CAC2FA

“Microsoft Entra ID via SAML — confirmed in the ZPE Nodegrid 6.0 user guide.”

CommandCenter Secure Gateway — LDAP / LDAPS, Active Directory with full sync, RADIUS, TACACS+, SAML 2.0, SSO with Integrated Windows Authentication, Two-Factor via RADIUS.

Dominion KX III — LDAP, Active Directory, RADIUS, Smart Card / CAC, SSO, FIPS mode.

Intelligent PDU G4 (PX3 / PX4) — LDAP, AD, RADIUS, TACACS+, Smart Card / CAC, SSO, SNMPv3.

Nodegrid out-of-band — LDAP, RADIUS, TACACS+, Kerberos, Smart Card / CAC, SSO with Microsoft Entra ID, Azure AD, Okta, 2FA.

dcTrack — LDAP, SAML 2.0 with SSO and IdP integration, OAuth 2.0 for API access, RBAC.

Power IQ — LDAP, Active Directory, SAML, IP-based access control, account lockout.

Cryptographic Validation

Validated cryptographic modules, AES-256 encryption, TLS for management planes, and certificate-based identity for the products themselves.

FIPS 140-3FIPS ModeAES-256TLSX.509SNMPv3 (encrypted)HTTPS

G&D SecureCert uses a FIPS 140-3 validated cryptographic module.

FIPS 140-3 validated G&D Cryptographic Module in the SecureCert range.

Dominion KX III — FIPS mode, AES-256, TLS.

Intelligent PDU G4 — FIPS mode, AES-256, TLS, SNMPv3 with encryption.

HTTPS certificate management (X.509 / RSA), trusted-certificate stores, configurable password policy.

Nodegrid — X.509 certificate management, secure boot, hardened operating system.

Air-Gap & Domain Isolation

For environments where networks of different classifications must never cross — required in defence, intelligence, financial trading, and secure operations centres.

NIAP PP 4.0Common Criteria EAL4+Common Criteria EAL 2+TEMPESTDoDIN APLHardware unidirectional

Adder Secure KVM and G&D SecureCert are the only products in this catalogue with hardware-enforced network isolation.

Secure KVM PP 4.0 range (AVS-2114 / 2214 / 4114 / 4214 / 1124 / 4128) — NIAP Protection Profile 4.0 certified. Hardware-enforced unidirectional data flow.

Secure KVM EAL4+ range (AVSV1002 / 1004, AVSC1102 / 1104, AVSD1002 / 1004) — Common Criteria EAL4+ and TEMPEST qualified.

SecureCert (ControlCenter-IP, ControlCenter-IP-XS, VisionXS-IP, Vision-IP, RemoteAccess-IP-CPU) — Common Criteria EAL 2+, NIAP-aligned, DoDIN APL approved.

Audit, Logging & Centralised Control

Knowing who did what, when. Required for compliance frameworks, forensic investigation, and incident response.

SyslogSIEM integrationSNMPv3 TrapsAudit LogsRBACSession SecurityCentralised Gateway

CommandCenter Secure Gateway — single pane of glass across KVM and serial console estate, per-user-group access auditing.

Intelligent PDU G4 — audit log, syslog forwarding, SNMPv3 trap forwarding.

dcTrack — item-level audit trail, role-based access for standard fields, syslog integration.

Power IQ — log forwarding via syslog, door access control with audit logs.

Nodegrid — centralised audit logs, syslog forwarding to SIEM, role-based access control.

Secure KVM — tamper-evident hardware and audit indicators.

Resilience & Recovery

When the in-band network is compromised or unavailable, the products that keep operations running or restore service.

Out-of-Band ManagementHardened LinuxSecure BootHigh Availability ClusterAlternate Channel Access

ZPE Nodegrid is the alternate path back into your network when the primary network is the problem.

Nodegrid — hardened Linux, secure boot, alternate-channel access independent of the production network. Ransomware-recovery posture.

Intelligent PDU G4 — remote power cycling capability to hard-reboot stuck equipment via secure management interface.

dcTrack — High Availability cluster (primary / secondary with automatic or manual failover) for continuous DCIM service.

Manufacturer-Level Certifications

Independently audited certifications held by the manufacturers themselves — relevant for procurement teams that need a paper trail at the vendor level.

SOC 2 Type IISO 9001NIST CSFDoDIN APL

SOC 2 Type I (information security), ISO 9001 (quality management), NIST Cybersecurity Framework alignment. VuWall Security Statement →

DoDIN APL approved (US Department of Defense Information Network).

Need a specific compliance answer for procurement?

Send your security specification questions to our specialist team. We will respond with verified datasheets and configuration guidance.