SenForce's latest end-point security product restricts adapter, WLAN networks, standards based on policy: The options for protecting computers through intelligence at different points in the network is really blossoming. You can use anti-virus, anti-spyware, and firewall software on individual computers and in mail servers and dedicated boxes at the corporate network edge, deploy 802.1X to restrict network access (wired and wireless) until a machine's integrity has been checked, and, now, control end-point security through policies set for individual machines for a host of parameters.
SenForce's version 3.0 of their Endpoint Mobile Security Manager (EMSM) is a stateful packet firewall that prevents pattern attacks among other advanced features; location-based security policies; adapter-based policies (like, you can't put a Wi-Fi card in that thing or at least not one from that vendor); restricted WLAN network visibility; integrity checking; and external storage control.
On the Wi-Fi side, this means that a network manager can make sure that only approved cards and types are installed in laptops (or even desktops), that a user has access only to certain networks, and that minimum network security is required, such as only allowing connections to WPA-enabled networks.