Secure Application Access Secure remote access to your applications and data Accops HySecure is an application access gateway that enables secure access to corporate applications, desktops and network services from any device working from any network. HyWorks enables users working from any network be it trusted LAN or untrusted WAN or Internet or mobile network to securely access corporate resources. HySecure's SPAN technology makes secure access a simple, fast deployment without requiring any network changes. User can get onto a browser, desktop client or mobile apps and start accessing the applications without requiring any configuration on the devices. Accops HySecure brings together the performance, management and functionality required for enterprise remote access and reduces costs traditionally associated with other VPN solutions due to the simplicity and ease of use of the solution united with our cost effective and flexible pricing models.
Easily enable BYOD and give access of applications to users Easy secure remote access to implement strong authentication for applications. deliver apps seamlessly to roaming users replace legacy ipsec/sslvpn create secure sandbox work space Zero Management Remote Access Enable Secure Sandbox computing Wrap & deliver applications with strong authentication Integrated with Application & desktop virtualization KEY FEATURES Clientless browser base secure remote access. Strong device control. Integrated two factor authentication. Seamless access from mobile apps. Desktop clients for PC. SPAN Technology Secure remote access without creating unsecured holes in the network's perimeter security. Makes application access possible without a virtual adaptor or routing changes on endpoint machine. Hide complete network information obfuscation. User can never find the actual IP address of hostname of the internal servers. Administrator can control each application available over VPN rather than opening up the whole network/subnets. Simplified Control for IT Specify authentication services (native, LDAP, Active Directory, RADIUS, HyID). Create applications rules for remote access.(app templates included) Create user and application groups for defining access to applications. Control device access using endpoint policies and zones. Enable high availability. Configure remote meeting and view live sessions. Specify time-based access restrictions. View reports and manage current sessions plus much more Secure Authentication Accops HySecure uses standards-based SSL/TLS Security. Users can be authenticated by methods such as Active Directory, LDAP, and RADIUS or local database. Fully integrated client-certificate based two factor authentication with automatic certificate provisioning is in built in to Hysecure. Configurable Authentication and Authorization servers mean that users can login using multiple methods and still have resources assigned by group or role. Web Portal Users login to a customized Web Portal which displays the applications available to them along with admin messages, HySecure client status, and endpoint security result and change password options. Administrators can now customize the HySecure web portal directly from the management console. It is possible to upload a custom logo and company name and set login and welcome messages to be displayed on HySecure web portal.
Access Your Applications Access all of your Applications, including all TCP and UDP applications such as HTTP/S and FTP based apps, RDP, Email, Windows File sharing and Propalms TSE and VDI. Even custom or proprietary applications and protocols are supported by Accops HySecure. In-built application templates help administrator create standard applications as well as define additional parameters. 32-bit & 64-bit Versions The Hysecure ISO based on CentOS is available for both 32bit as well as 64bit hardware platforms. The ISO for 32bit hardware can be installed on 64bit hardware. With support for 64bit platform a large amount of RAM and CPU power can be made available to Hysecure server for scalable deployments. ipad and Android Support Accops Hysecure provides access to business applications and desktops from ipad and Android based tablet devices. The Accops Universal Client available from the Apple App Store and Android Market allows access to both TSE and VDI applications via HySecure. Kiosk Mode Kiosk mode allows users to access certain applications without requiring any client software. Accops Hysecure web portal delivers a set of Java applications enabling access to Remote Desktop Connnections. FTP Applications. VNC Applications. File Share. SSH/TELNET Applications. Propalms VDI/TSE. Citrix Web/ICA. My Desktop and Files. Remote Meeting. Tablet, Smartphone Access Client-Server Business applications like SAP, CRM, Tally Untrusted Network Intranet, Webserver, Email, File Shares Application servers Client for Pc s, Smartphones Virtual Hosted Applications & Desktops Client for Pc s, Smartphones Controller Internet/Untrusted Network On Premise/ Cloud
Hardened Accops OS The HySecure application runs on Accops OS 4 which is a security hardened, enterprise class Linux Distribution derived from CentOS. Accops OS hosts the required services for running Accops HySecure and is maintained by Accops Development Team. HySecure Application Launcher The HySecure Application launcher is a simple user interface for users to launch their applications when logging in through the HySecure desktop client. After login, the Application Launcher is shown to the user with the list of applications the user has access to. The following applications can be displayed Propalms TSE Applications Virtual Desktops from Accops VDI. Web Applications. Remote Desktop Connections including My Desktop and Files. Remote Meeting. Site to Site Access Accops HySecure provides a unique Site-to-Site access feature where it is possible to chain Accops HySecure servers and access applications across sites. Other VPN solutions either provide IPsec based site to site or their SSL based Site-to-Site is layer 2 tunnel which suffer from poor performance because of too much packet loss. (Read TCP-over-TCP meltdown). EndPoint Security Enforces access restrictions based on customizable policies such as Anti-virus, Antispyware and firewall status ensuring devices are 'safe' for connection to the network. IP and Mac address restrictions can also be enforced. High Availability & Performance Scalable to thousands of users with built-in Load Balancing Accops HySecurecan automatically distribute application network traffic among multiple OneGate Servers with integrated failover to available servers. Remote Meetings The remote meetings feature offers authorized HySecure users the ability to perform remote web meetings for the purpose or sharing presentations, text chat, file transfer or just use as a Helpdesk facility. Remote meeting feature is available in both HySecure Portal and HySecure Desktop Client. A user can select give support to connect to another HySecure user. User can select get support to request support from another HySecure user. Propalms TSE Integration Accops HySecure works in conjunction with Propalms TSE solution to deliver a highly efficient application delivery solution to enterprises. Propalms TSE provides presentation virtualization and OneGate provides secure remote access. Accops HySecure enables single sign-on, Web Portal & Desktop integration features for Propalms TSE enabled applications. Client Access Accops VPN supports Windows, Mac OS X and Linux platforms. Users can access OneGate either through a Web Portal (Java) or locally installed Desktop Client.
DATA SHEET Management Web based management console Dashboard with graphical reporting Menu driven console interface for system configuration Wizard driven installation procedure Self-signed certificate generation CLI Delegated administration Certificate based strong authentication for administrators Auto checking for configuration errors Online License service Inline help Application Support All web based, TCP and UDP based clientserver applications Windows file shares and drive mapping Dynamic port based applications Publish Subnet or IP Range for network access Special support for RDP virtual channels Application server load balancing Session caching for load balanced applications Per application based compression switch MyDesktop for direct personal desktop access Terminal server application publishing via Propalms TSE, RDP & VNC VDI: Propalms VDI & Pano Logic VDI Complex reverse connection applications Access Security Features TLS 1.0 and above Encryption: Strongest available: DES, 3DES, AES(256), RC4 Authentication: SHA-2, RSA 2048/4096 4096 bit RSA key CA certificate support Internet network masking and IP address/hostname mangling Application level gateway and not layer 2 bridging Hardened gateway operating system Authentication Features Authentication based on User identity User's organization/group/realm Static passwords OTP - dynamic passwords Certificates Device signature User location MAC ID, IP Address Endpoint security trust Integrates with AD/LDAP/RADIUS Two Factor authentication based on Certificates Device Signatures One Time Passwords (OTP): SMS/Email/Hardware/Software Token Local database with full customization per user, password policies, password reset support RSA Secure ID or any 3rd party OTP server Fully integrated client-certificate based two factor authentication server with automatic CA and certificate provisioning Email based user provisioning Authentication method based application access control Support for multiple authentication servers with cascading mode Authorization Features Publish applications rather than subnet or network Simple access control mechanism Access control based on Device identity and profile Endpoint Security trust level User Authentication method User Role User's organization Dynamic policy evaluation based on run time information about device, authentication method and user role Display of allowed applications and availability of the application server to users Time based restriction policies Auto-detection of applications running in corporate network Scheduled account expiry Block specific groups Split & Full tunnel modes Multiple VPN Domain based control Control User's Internet access Endpoint protection from threats Support for external authorization servers Automatic fetching of group information from AD/LDAP/RADIUS
Endpoint Management Support for checking for antivirus, firewall and antispyware products Real time status check for Last update time Real time protection check Support for checking for MAC ID and IP address Application control based on device profile Mandatory profile for non-avoidable policy checks on all endpoints Quarantine profile for devices that fails all other profile Option to block endpoints that fails to comply to required policies or option to allow them to login by putting them in quarantine profile Login control based on device signature Kill existing TCP connections on user machine Block Internet and restrict incoming connection policy Block access via proxy server policy Total Endpoint Protection from Internet Attacks and hijacking Auditing Features Complete reporting of user logons and activity Information logged includes Time of access Username, domain MAC Address of endpoint IP address of endpoint Application accessed Device profile Detailed logging of endpoint security scans results Extract logs in CSV format for feeding to third part report generation Search logs Auto-archiving of logs Monitor and disconnect live users Access Modes Multiple access modes: HyLite portal for clientless access OneGate portal with java applications ActiveX browser agent for quick access Full access client for desktops ios & Android app No configuration required on end user machines Client platforms supported Windows Windows7/8/10 Windows server 2003/2008R2/2012R2 Linux OS MAC OS X PPC/Intel 10.4 and above ipad/iphone/android Access Site to site access Smartphone Access Deployment Scalability Scalable to thousands of users Active-Active N+1 cluster SSL connections load balancing, multiple algorithms Application connection load balancing can distribute the connection for a specific application across multiple app servers in the LAN based on round robin function Session persistence: Users do not need to reauthenticate ISP load balancing for incoming connections Client side failover using Alternate gateways 64-bit hardware support Gateway Features Runs on hardened Linux based platform Menu driven console interface for easy configuration Can run on any standard or custom hardware Virtual server for using VPN as HTTPS proxy Runs on virtualization platforms from VMware, XenServer, Hyper-V ABOUT ACCOPS Accops is a global provider of software and hardware technology solutions focused on application and desktop virtualization and secure remote access products. Accops's software and hardware products enables businesses to deploy and manage desktops, applications and enable their employees, partners, vendors to access business applications from anywhere using any device. Virtualize. Secure. Deliver. Accops, HyWorks, HyDesk, HyID, HyLite, HySecure and HyAssist are registered trademarks of Propalms Technologies Pvt. Ltd. Other names may be trademarks of their respective owners. Propalms has the right to change, modify, transfer or otherwise revise the publication without notice. Tel: India +91 9595 277 001 Europe +49 341 3315 78 30 Email: sales@accops.com Web: www.accops.com Copyright 2016, Propalms Technologies Pvt. Ltd. All Rights Reserved.