JUNIPER NETWORKS SSL VPN - SECURE ACCESS

Juniper Networks SSL VPNs are based on the Instant Virtual Extranet (IVE) platform, which uses SSL, the security protocol found in all standard Web browsers. The use of SSL eliminates the need for client-software deployment, changes to internal servers, and costly ongoing maintenance and desktop support. Juniper Networks SSL VPN Secure Access appliances combine the overall benefit of a lower total cost of ownership over traditional IPSec client solutions, with unique end-to-end security features. Enhanced access methods enable the enterprise to provision access by purpose for virtually any resource, including those that are jitter or latency sensitive.

The following appliances supercede the Juniper Networks Netscreen SA1000, SA3000 and SA5000 series as Juniper Networks continues to build on their market leading product set. Juniper Secure Access is the only SSL VPN to hold Common Criteria EAL2 accreditation and offer products meeting the US Government FIPS 140-2 level 3 certification.

JUNIPER NETWORKS SECURE ACCESS 6000
	Secure Access 6000 is designed for large enterprises, and features best-in-class performance, scalability, and redundancy for organisations with high volume secure access and authorisation requirements. The SA 6000 hardware platform is designed to scale to the largest enterprise deployments and optimise application delivery, with available options that include redundant hot swappable hard disks, power supplies and fans, as well as GBIC-based multiple Ethernet ports for redundant or meshed configurations. The SA 6000 also features a state-of-the-art SSL acceleration chipset to speed CPU-intensive encrypt/decrypt processes, as well as built in compression for all traffic. Each unit is scaleable from 100 to 2500 concurrent users with multi-unit clusters scaling to 12,500 concurrent users.
JUNIPER NETWORKS SECURE ACCESS 4000
	Secure Access 4000 enables mid-to-large sized organisations to provide cost effective remote and partner extranet access from any standard Web browser. The SA 4000 appliances feature rich access privilege management functionality that can be used to create secure customer/partner extranets with no infrastructure changes, no DMZ deployments, and no software agents. Built-in compression for all traffic types speeds performance, and SSL acceleration is available via a software license for more demanding environments. The SA 4000 Series is scaleable from 50 to 1000 concurrent users.
JUNIPER NETWORKS SECURE ACCESS 2000
	Secure Access 2000 enables small-to medium-sized organisations to deploy cost effective remote and extranet access, as well as intranet security. Users can access the corporate network and applications from any standard Web browser. Juniper’s Secure Access appliances also offer sophisticated partner/customer extranet features that enable controlled access to differentiated users and groups with no infrastructure changes, no DMZ deployments, and no software agents. This functionality also allows companies to secure access to the corporate intranet, so that administrators can restrict access to different employee, contractor or visitor populations, based on the resources that they need. The SA 2000 is scaleable from 25 to 100 concurrent users.

STANDARD FEATURES

Core Access
This standard feature provides access to all Web based applications (Intranet, OWA, iNotes etc.) from an unmodified browser as well as providing a webified file viewer for access to Windows & UNIX file shares and a webified Telnet/SSH client.

Host Checker
Client computers can be checked at the beginning and throughout the session to verify an acceptable security posture requiring or restricting network ports; checking files/process and validating their authenticity with MD5 hash checksums. It performs version checks on security applications, and carries out pre-authentication checks and enforcement. Enables enterprises to write their own host check method to customize the policy checks. Resource access policy for non-compliant endpoints is configurable by the administrator.

Cache Cleaner
All proxy downloads and temp files installed during the session

LICENCE OPTIONS

SAM/NC Secure Application Manager (SAM) combined with Network Connect (NC)
Secure Application Manager dynamically delivers an Active-X or JAVA client that supports application layer tunnels for WTS/Citrix, client server and desktop apps including basic NetBIOS support for file shares.
Network Connect provides a clear channel network layer tunnel similar to IPsec. Where the end-to-end network allows Network Connect will utilise IPsec as the carrier for improved performance. Where that is not possible SSL will be used. Network Connect also supports full Domain logon with GINA integration and full NetBIOS support.

Advanced Platform combined with Central Manager (CM)
The Advanced feature set is targeted at the more complex deployment. It adds an extra layer of management including support for users who belong to multiple groups and require the sum of their privileges to be reflected in a single session. It also provides greater customisation of the user experience.
Central Manager provides enhanced configuration management, real-time monitoring and advanced logging for one or more appliances.

Secure Meeting
Secure Meeting provides secure, controllable online meetings and cross-enterprise collaboration as well as providing a valuable help desk tool with clientless remote control over problem PCs. Juniper is the only SSL VPN vendor to offer this feature.
The SA 2000 supports 50 users across 25 meetings
The SA 4000 supports 100 users across 50 meetings
The SA 6000 supports 250 users across 125 meetings

SSL Acceleration License (SA 4000 only)
This invokes an inbuilt hardware accelerator in the SA 4000 for improved performance. This feature is optional on the SA 4000 and standard on the SA 6000.

High Availability Cluster Pairs
Local Active/Passive with stateful failover
Local Active/Active with third party load balancers
Remote Active/Active

Instant Virtual Systems License (SA 4000 & 6000 only)
Virtualisation allows up to 255 logical gateways in a single appliance. This is ideal for complex businesses, shared data centres and service providers.

To request information on these Juniper products or any other product please click the Information Request menu item.