Built for environments where security isn't optional.

We distribute the products that meet Singapore government, defence, banking, and broadcast security requirements. Every claim on this page is verified against the manufacturer’s own documentation.

Certification Frameworks

Manufacturer Partners

10+

Authentication Standards

NIAP-listed Product Ranges

Security at the product level, with the certifications to prove it.

When procurement teams audit your infrastructure choices, they ask specific questions: “Does it support Entra ID?”, “Is the cryptographic module FIPS validated?”, “Can it isolate classified networks?”. The brands we distribute were selected because they answer those questions in writing. Below is what each product line supports, sourced from the manufacturer’s own technical documentation.

Identity, Authentication & Access Control

How each product authenticates against your directory, federation, multi-factor, and privileged-access workflows.

LDAPLDAPSRADIUSTACACS+Active DirectorySAML 2.0Microsoft Entra IDAzure ADOktaKerberosSSOSmart Card / CAC2FA

“Microsoft Entra ID via SAML. Confirmed in the ZPE Nodegrid 6.0 user guide.”

CommandCenter Secure Gateway: LDAP / LDAPS, Active Directory with full sync, RADIUS, TACACS+, SAML 2.0, SSO with Integrated Windows Authentication, Two-Factor via RADIUS.

Dominion KX III: LDAP, Active Directory, RADIUS, Smart Card / CAC, SSO, FIPS mode.

Intelligent PDU G4 (PX3 / PX4): LDAP, AD, RADIUS, TACACS+, Smart Card / CAC, SSO, SNMPv3.

Nodegrid out-of-band: LDAP, RADIUS, TACACS+, Kerberos, Smart Card / CAC, SSO with Microsoft Entra ID, Azure AD, Okta, 2FA.

dcTrack: LDAP, SAML 2.0 with SSO and IdP integration, OAuth 2.0 for API access, RBAC.

Power IQ: LDAP, Active Directory, SAML, IP-based access control, account lockout.

Cryptographic Validation

FIPS-validated cryptographic modules, AES-256 encryption, TLS-protected management planes, and certificate-based device identity.

FIPS 140-3FIPS ModeAES-256TLSX.509SNMPv3 (encrypted)HTTPS

G&D SecureCert uses a FIPS 140-3 validated cryptographic module.

FIPS 140-3 validated G&D Cryptographic Module in the SecureCert range.

Dominion KX III: FIPS mode, AES-256, TLS.

Intelligent PDU G4: FIPS mode, AES-256, TLS, SNMPv3 with encryption.

HTTPS certificate management (X.509 / RSA), trusted-certificate stores, configurable password policy.

Nodegrid: X.509 certificate management, secure boot, hardened operating system.

Air-Gap & Domain Isolation

For environments where networks of different classifications must never cross. Required in defence, intelligence, financial trading, and secure operations centres.

NIAP PP 4.0Common Criteria EAL4+Common Criteria EAL 2+TEMPESTDoDIN APLHardware unidirectional

Adder Secure KVM and G&D SecureCert are the only products in this catalogue with hardware-enforced network isolation.

Secure KVM PP 4.0 range (AVS-2114 / 2214 / 4114 / 4214 / 1124 / 4128): NIAP Protection Profile 4.0 certified. Hardware-enforced unidirectional data flow.

Secure KVM EAL4+ range (AVSV1002 / 1004, AVSC1102 / 1104, AVSD1002 / 1004): Common Criteria EAL4+ and TEMPEST qualified.

SecureCert (ControlCenter-IP, ControlCenter-IP-XS, VisionXS-IP, Vision-IP, RemoteAccess-IP-CPU): Common Criteria EAL 2+, NIAP-aligned, DoDIN APL approved.

Audit, Logging & Centralised Control

Knowing who did what, when. Required for compliance frameworks, forensic investigation, and incident response.

SyslogSIEM integrationSNMPv3 TrapsAudit LogsRBACSession SecurityCentralised Gateway

CommandCenter Secure Gateway: single pane of glass across KVM and serial console estate, per-user-group access auditing.

Intelligent PDU G4: audit log, syslog forwarding, SNMPv3 trap forwarding.

dcTrack: item-level audit trail, role-based access for standard fields, syslog integration.

Power IQ: log forwarding via syslog, door access control with audit logs.

Nodegrid: centralised audit logs, syslog forwarding to SIEM, role-based access control.

Secure KVM: tamper-evident hardware and audit indicators.

Resilience & Recovery

When the in-band network is compromised, the products that keep operations running or restore service.

Out-of-Band ManagementHardened LinuxSecure BootHigh Availability ClusterAlternate Channel Access

ZPE Nodegrid is the alternate path back into your network when the primary network is the problem.

Nodegrid: hardened Linux, secure boot, alternate-channel access independent of the production network. Ransomware-recovery posture.

Intelligent PDU G4: remote power cycling capability to hard-reboot stuck equipment via secure management interface.

dcTrack: High Availability cluster (primary / secondary with automatic or manual failover) for continuous DCIM service.

ADDERLink INFINITY Manager (AIM, ASP-001): secure failover redundancy with a primary AIM and hot-standby second AIM. Endpoints support dual NICs for redundant network paths.

CommandCenter Secure Gateway: primary and secondary appliance cluster with hot-swap RAID, dual hard drives and dual power supplies. Neighborhood configuration of up to 10 CC-SG units with automatic failover.

Manufacturer-Level Certifications

Independently audited certifications held by the manufacturers. For procurement teams that need a paper trail at the vendor level.

SOC 2 Type ISOC 2 Type IINIST CSFDoDIN APL

SOC 2 Type I (information security), NIST Cybersecurity Framework alignment.

DoDIN APL approved (US Department of Defense Information Network).

SOC 2 Type II attestation (information security, availability, and confidentiality controls audited over a period).

Need a specific compliance answer for procurement?

Send your security specification questions to our specialist team. We will respond with verified datasheets and configuration guidance.