Why MobilityGuard OneGate?

Similar documents
Copyright Giritech A/S. Secure Mobile Access

Secure remote access to your applications and data. Secure Application Access

Strong Authentication for Secure VPN Access

TRUSTED IDENTITIES, MANAGED ACCESS Implementing an Identity and Access Management Strategy for the Mobile Enterprise. Introduction.

Authentication Solutions. Versatile And Innovative Authentication Solutions To Secure And Enable Your Business

Secure Authentication Managed Service Portfolio

Secure Remote Access Give users in office remote access anytime, anywhere

RSA SecurID Two-factor Authentication

300% increase 280 MILLION 65% re-use passwords $22 per helpdesk call Passwords can no longer protect you

TECHNOLOGY LEADER IN GLOBAL REAL-TIME TWO-FACTOR AUTHENTICATION

Proof of Concept Guide

Secure Access Gateway 3000er Serie

Security Overview Enterprise-Class Secure Mobile File Sharing

Extranet Access Management Web Access Control for New Business Services

nexus Hybrid Access Gateway

Dell SonicWALL and SecurEnvoy Integration Guide. Authenticating Users Using SecurAccess Server by SecurEnvoy

ABOUT TOOLS4EVER ABOUT DELOITTE RISK SERVICES

EasyConnect. Any application - Any device - Anywhere. Faster, Simpler & Safer Networks

Flexible Identity Federation

Security Considerations for DirectAccess Deployments. Whitepaper

Authentication Solutions VERSATILE AND INNOVATIVE AUTHENTICATION SOLUTIONS TO SECURE AND ENABLE YOUR BUSINESS

Ensuring Enterprise Data Security with Secure Mobile File Sharing.

INTEGRATION GUIDE. IDENTIKEY Federation Server for Juniper SSL-VPN

PortWise Access Management Suite

WHITEPAPER. SECUREAUTH 2-FACTOR AS A SERVICE 2FaaS

The Top 5 Federated Single Sign-On Scenarios

managing SSO with shared credentials

SAP Single Sign-On 2.0 Overview Presentation

Cisco ASA Adaptive Security Appliance Single Sign-On: Solution Brief

White Paper Delivering Web Services Security: The Entrust Secure Transaction Platform

WHITE PAPER. Identikey Server 3.1 Strong Authentication solution for On-Demand Applications and SaaS

IQS Identity and Access Management

An Overview of Samsung KNOX Active Directory and Group Policy Features

SECURE ACCESS TO THE VIRTUAL DATA CENTER

PortWise Access Management Suite

DIGIPASS Authentication for Sonicwall Aventail SSL VPN

TECHNOLOGY LEADER IN GLOBAL REAL-TIME TWO-FACTOR AUTHENTICATION

Astaro Gateway Software Applications

API-Security Gateway Dirk Krafzig

Authentication. Authentication in FortiOS. Single Sign-On (SSO)

expanding web single sign-on to cloud and mobile environments agility made possible

2003, Rainbow Technologies, Inc.

STRONGER AUTHENTICATION for CA SiteMinder

Google Identity Services for work

DIGIPASS Authentication for SonicWALL SSL-VPN

White paper December Addressing single sign-on inside, outside, and between organizations

Secure Communication Made Easy

The Essential Security Checklist. for Enterprise Endpoint Backup

RSA SecurID Software Token 1.0 for Android Administrator s Guide

The Cloud, Mobile and BYOD Security Opportunity with SurePassID

etoken Single Sign-On 3.0

Increase the Security of Your Box Account With Single Sign-On

Integrating Single Sign-on Across the Cloud By David Strom

Proposal Document TitleDocument Version 1.0 TitleDocument

SEC100 Secure Authentication and Data Transfer with SAP Single Sign-On. Public

FileCloud Security FAQ

Leveraging SAML for Federated Single Sign-on:

Secure, Mobile Access to Corporate , Applications, and Intranet Resources

Citrix Access Gateway

Overview and use-cases

Dell SonicWALL Secure Virtual Assist: Clientless remote support over SSL VPN

Secure your business DIGIPASS BY VASCO. The world s leading software company specializing in Internet Security

White Paper. McAfee Cloud Single Sign On Reviewer s Guide

WHITEPAPER SECUREAUTH AND CAC HSPD-12 AUTHENTICATION TO WEB, NETWORK, AND CLOUD RESOURCES

Best Practices for Secure Remote Access. Aventail Technical White Paper

Workspot Configuration Guide for the Cisco Adaptive Security Appliance

External authentication with Astaro AG Astaro Security Gateway UTM appliances Authenticating Users Using SecurAccess Server by SecurEnvoy

Out-of-Band Multi-Factor Authentication Cloud Services Whitepaper

NCSU SSO. Case Study

Entrust Secure Web Portal Solution. Livio Merlo Security Consultant September 25th, 2003

Keeping your VPN protected

Leostream Corporation leostream.com Share this Whitepaper!

Oracle Access Manager. An Oracle White Paper

SAFE-T RSACCESS REPLACEMENT FOR MICROSOFT FOREFRONT UNIFIED ACCESS GATEWAY (UAG)

MANAGE SECURE ACCESS TO APPLICATIONS BASED ON USER IDENTITY. EMEA Webinar July 2013

Cybersecurity and Secure Authentication with SAP Single Sign-On

DIGIPASS Authentication for Citrix Access Gateway VPN Connections

A new Secure Remote Access Platform from Giritech. Page 1

WatchGuard SSL 2.0 New Features

SECUREAUTH IDP AND OFFICE 365

The BiGuard SSL VPN Appliances

Ensuring the Security of Your Company s Data & Identities. a best practices guide

Secure and simple authentication via mobile phone

EXTENDING SINGLE SIGN-ON TO AMAZON WEB SERVICES

Family Datasheet AEP Series A

A Guide to New Features in Propalms OneGate 4.0

INTEGRATION GUIDE. DIGIPASS Authentication for Google Apps using IDENTIKEY Federation Server

The increasing popularity of mobile devices is rapidly changing how and where we

SSL VPN Technical Primer

DIGIPASS Authentication for Cisco ASA 5500 Series

Top Three Reasons to Deliver Web Apps with App Virtualization

SalesForce SSO with Active Directory Federated Services (ADFS) v2.0 Authenticating Users Using SecurAccess Server by SecurEnvoy

Barracuda Networks Technical Documentation. Barracuda SSL VPN. Administrator s Guide. Version 2.x RECLAIM YOUR NETWORK

Everything you need to know!

How to reduce the cost and complexity of two factor authentication

How to Provide Secure Single Sign-On and Identity-Based Access Control for Cloud Applications

DIGIPASS Authentication for GajShield GS Series

Securing Citrix with SSL VPN Technology

Web Applications Access Control Single Sign On

Beyond passwords: Protect the mobile enterprise with smarter security solutions

Transcription:

Any Scenario for Access Just One Solution Why MobilityGuard OneGate? Scenarios 1 Access from Anywhere 2 Strongly Identify Your Users 3 No more Post-IT notes with Single Sign-On 4 Three Click Access Administration 5 Encapsulate Unsecure Systems 6 Organizational Collaboration 7 Access Management as a Service 8 Secure your eservices & ebusiness The clientless SSL VPN included in the MobilityGuard OneGate is advanced technology that delivers real business value by allowing users to access applications and information from any location, using any device, without the need to install any client software. Clientless For maximum productivity, MobilityGuard s clientless access enables organizations to offer remote or internal access to mission-critical information and applications. These include email, intranet, extranet, client/server applications, collaboration tools, terminal services and many more while maintaining a high level of security. Users only require an Internet connection and a web browser to get instant access. MobilityGuard OneGate does not require any additional hardware or software on the client device, making it easy and affordable to deploy and maintain. An optional VPN-client is also available with MobilityGuard OneGate, if required. Strong User Authentication More than 15 different authentication methods (incl. two factor authentication) are included in the MobilityGuard OneGate which gives organizations a unique and cost efficient solution for securely identifying any user. The solution provides support for both internal user e.g. employees and external user groups e.g. partners, suppliers, customers etc. All the available authentication methods can be used simultaneously so the solution perfectly fits the organizations business needs. Strong Encryption By using industry standard encryption, user data and transactions are secured from unauthorized access. MobilityGuard uses 128 to 256 bit encryption using military accepted encryption algorithms like AES (Advanced Encryption System) User-Friendly Application Launcher Using any web browser, the MobilityGuard OneGate Launcher greatly simplifies the user experience by bringing the applications and information to the user s fingertips. When combined with Single Sign-On technology from MobilityGuard, users no longer need to enter their username or password for each of their applications once they have logged into MobilityGuard.

SECURE ANY APPLICATION The MobilityGuard OneGate Launcher is fully customizable allowing administrators to provide individual menus based upon the logged in user, where the user is connecting from, the authentication level used, and much more. The Portal can also auto-detect the client device and adapt the user interface accordingly. The options are limitless. The Application Launcher gives the users personalized access to applications quickly and easily. Support for any application MobilityGuard supports virtually all applications including Web, client/server, mainframe, terminal server, bi-directional (VoIP, online collaboration tools), and file servers. As a software solution, the MobilityGuard OneGate is uniquely customizable to support virtually any class of application. Scalability & Performance By connecting multiple MobilityGuard OneGate nodes the solution is easily scalable to support even the largest network environments and cross-regional deployments. Built-in High Availability Any number of MobilityGuard OneGate can be installed in your network at no additional cost, to guarantee 24x7 access. MobilityGuard High Availability Functionality gives scalability and high performance that guarantees 24x7 access.

ACCESS FROM ANYWHERE Access from Anywhere Give any user category secure access to your resources How can your users get secure access to the applications, irrespective of time, place and which device they use? How do you simplify the variety of remote access methods for people in the field or at home as well as those located at headquarter or branch offices? With MobilityGuard OneGate, authorized users can securely access all types of sensitive internal systems and information, irrespective of time and place. Typical users may be employees, partners and customers. They may be located at the office, at home or in the field using whichever computer is available to them. Only a web browser is needed Users only require an Internet connection and a standard web browser to get instant access. MobilityGuard provides very high mobility, since there is no need to install client software on the connecting computer. MobilityGuard have even support for mobile devices such as smart phones and tablets. No additional hardware or software MobilityGuard OneGate does not require any additional hardware or software on the client device, making it easy and affordable to deploy and maintain. Customers Partner Remote Access Mobile Users Branch Office Firewall Internet Headquarter Firewall Web Client/Server Applications Streaming Media FTP E-mail Instant Messaging Application Servers (Terminal Server/Citrix) File File Shares & DB DB Services VoIP (Phone Service) Directory Service Work at Home Access Any Application For maximum productivity, the MobilityGuard clientless VPN enables organizations to offer remote or internal access to mission-critical information and applications while maintaining a high level of security. This includes e-mail, intranet, extranet, client/server applications, collaboration tools, terminal services, and much more. No customization of the applications is needed, which means installation and configuration of MobilityGuard OneGate can normally be completed within one hour. Everything in a box MobilityGuard OneGate provides Strong User Identification, Dynamic Access Control, Central Single Sign-On, and an Engine for integration of any web portal or application. The OneGate solution is available as physical or logical appliance running on VMware, Hyper-V or XEN-server. Zero Footprints on the connecting device There are no footprints" left on the connecting client computer after use. This means that no other client computer user can get access to the information received from the application. For example, an email containing sensitive information will not be visible to other users who may have access to the same PC. Malicious code filtering by Secure Session Handling By using True SSL-VPN technology with secure session handling MobilityGuard OneGate provides a first level of protection against malicious code installed on the connecting computer.

STRONGLY IDENTIFY THE USERS Strongly Identify Your Users Different User Categories and many Access Scenarios Different users need different ways to securely identify themselves before accessing your applications. Different access situations also require different methods for identification. An employee may use secure identification methods or devices such as hardware tokens provided by the organization. But how can you best manage user categories that are loosely connected to the organization, such as partners, customers or even contractors? Deploying Secure Identification methods or devices is not usually the preferred solution for many organizations due to the cost and management overheads. However, nowadays these users do need the best security protection and a solution that strongly identifies them when they access their applications. Combine more than 15 Built-In secure authentication methods With the MobilityGuard OneGate solution you get access more than 15 secure, built-in authentication methods. This includes amongst others, a two-factor authentication method through a unique software-based hardware token known as the MobilityGuard Web Token. Another built-in secure authentication method is MobilityGuard SMS token which delivers a one-time password sent to the user s mobile phone as an SMS Text message. The users mobile phone becomes a physical Hard Token. Reduce the costs and solve the Identification Puzzle Using OneGate s built-in authentication methods, reduces the need for additional thirdparty solutions, such as physical Hard tokens. You can also combine different types of authentication methods such as Hard Tokens, including RSA and Vasco, electronic ID, local certificates, Enigma Code Matrix and USB- Keys. Customers Partner Remote Access Mobile Users User authenticates with Hard Token Webmail CRM System Partner Office Firewall User authenticates with OTP to mobile phone Internet User authenticates with Web Token Firewall Intranet Authentication & Granular Access Control Terminal Server Files Time Tracker Internal Services Organization X Work at Home Granular access based on the authentication method used How do you differentiate access levels based on how strongly the user has been identified? Traditionally this works rather like an on and off switch. If appropriately identified, the user has access to the entire network. However, MobilityGuard OneGate includes a mechanism for giving granular access to any system based on a policy set, which ranks the methods used for identification. In practice this means that if the user is identified with a stronger authentication method then they will automatically have access to a wider set of applications.

NO MORE POST-IT NOTES No More Post-it Notes Users do forget their password Users frequently forget their passwords, simply because they have a large number of passwords to remember nowadays. So, how do users solve this problem? Often they use the same password for both sensitive and nonsensitive applications, a few create an organized system to remember them and others even resort to Yellow Post-it notes stuck to their computers! Organization Streaming Media Internet Login Login Web MobilityGuard logs in to applications E-mail MobilityGuard stores the login information in an encrypted database Client/Server Applications Application Servers (Terminal Server Citrix) File File Shares & DB DB Services Centralized Single Sign-On By using the MobilityGuard dynamic centralized Single Sign-On/Sign-Off function, your employees have a simple and secure method for logging on to all the applications that they need. Simplicity is the key to success MobilityGuard OneGate creates a Single Sign-on (SSO) entry automatically, the first time the users login to the application. MobilityGuard stores this SSO information in a central encrypted database and uses it the next time the users are authorized and request access to the application. The MobilityGuard OneGate solution provides the option to easily allow or disallow Single Sign-On to the application based on the security policy. The security policy is simply defined by five security criteria in the OneGate Control Center. No more Post-It yellow Notes By using MobilityGuard OneGate you can eliminate the use of yellow Post-it notes" for remembering passwords.

THREE CLICK ACCESS ADMINISTRATION Three Click Access Administration Complex secure access limits your business How do you provide secure access to your IT environment? Many organizations have extremely complex IT environments. In order to manage users and provide access to applications, the organization needs to deploy multiple solutions to deliver the access required. Multiple solutions often also mean that access to multiple administration interfaces is required and this is not cost effective. They are also very complex to set up and it is difficult to manage and maintain security levels. Single Point of Administration Using MobilityGuard OneGate, which is a centralized Security Platform, you have a single point of administration for all access methods that you need to support. With three mouse clicks you can securely deliver applications such as web based, terminal server and even client-server applications to any user in any situation. Three steps to developing your business A typical access option is set up using these three steps: 1. Define your application 2. Create an access control list 3. Create a menu entry All your Security Functions in a Single solution MobilityGuard OneGate provides a full portfolio of security functions in a single solution. Some examples of the functionality are: Secure Login with two-factor authentication Secure Communications with secure session handling Intelligent centralized Single Sign-On Dynamic Authorization Control for granular access Support for easy integration with any application or web portal Federation of User Identities for collaboration Self-Service functions for users e.g. password reset Digital Signing of any electronic information Open up Your Business Deploying a MobilityGuard OneGate Appliance, means that security issues and access control need no longer limit the expansion of your business. MobilityGuard OneGate is available as: 19 Rack server, 3000-, 4000- and 6000-Series, scalable up to 3000 concurrent users per appliance Logical appliances, VMware-, Hyper-V and XEN-Server

ENCAPSULATE UNSECURE APPLICATIONS Encapsulate Unsecure Applications Encapsulate any unsecure application or service It is unusual for applications to be designed with security in mind from the beginning. However it is important to take security into consideration from an early stage when planning any new project. Security is crucial regardless of whether the project is for internal use or an electronic service provided to external or anonymous users but it is much more difficult to try to add security counter-measures in the latter stages of an IT security project. Security Shell MobilityGuard OneGate solves this security problem by enabling you to create a secure shell around an already developed or implemented application. The shell is an easy way to ensure that the application is fully protected with the necessary security measures, without the need for any redesign or modification of the application itself. All Security Functions in one solution MobilityGuard is a single solution that protects any application or electronic service with: Secured communication Strong user identification Dynamic Access Control All service functions are configured by a few mouse clicks and no changes need to be made to the target applications. Take a broad view It is important to take a holistic view of your network and application security. It is all too easy to focus too narrowly on securing a single service and to miss other important security weaknesses elsewhere in your network. MobilityGuard OneGate delivers a homogeneous secure IT environment which will provide the highest security performance for all, rather than single, applications. OneGate achieves your goal of providing a holistic secure IT environment at the lowest Total Cost of Ownership. Your Organization Web Streaming Media FTP E-mail Instant Messaging Internet Firewall CRM Application Application Servers (Citrix) MobilityGuard OneGate Storage & DB DB Services SAP R3 R3 Hypernet VoIP (Phone Service) Certified Applications Your Application & eservices Directory Service

ORGANIZATIONAL COLLABORATION Organizational Collaboration Make Collaboration Easy and Secure Do you encounter difficulties with IT and IT security problems when setting up collaboration with business partners? Do you see the need for complex VPN (Virtual Private Network) connections that are difficult to administer, in order to maintain your security level? When connecting business partners to your IT environment by means of VPNs you may unintentionally expose your internal network to your partners network. It is only possible to maintain the required security levels for VPNs through advanced administration and a huge amount of work. MobilityGuard OneGate makes it much easier and more secure to collaborate with partners by means of built-in Identity Federation functionality. What is Identity Federation? The basis for federated identities is Trust. Trust means that one organization relies on another organization to identify the users in a secure and reliable manner. Once you or your collaborating network partner have verified the user s identity, the required application will be accessible to him. By using Identity Federation, you can even create a cross-organizational border solution for Single Sign-On (SSO) that will greatly simplify access for your users. The access to internal and external applications is transparent and the users have no need to know where the resources are located. Why use Federation? MobilityGuard OneGate Federation provides an easy way to collaborate with your partners. Benefits include: No VPN connection needs to be set up Improved security levels Minimal administration and cost of management Extended functionality Seamless integration with your business partners network and services Easy use of widely available Cloud Services, such as Google Apps and Microsoft Internet based services. A little about the Technology MobilityGuard OneGate Federation technology is based on SAML (Security Assertion Markup Language) version 2 which is the European standardized protocol for Identity Federation, MobilityGuard OneGate can act as the Identity Provider or alternatively as the Service Provider within an Identity Federation set up.

ACCESS MANAGEMENT AS A SERVICE Access Management as a Service Why does security have to be so difficult and complicated? Creating secure and easy access solutions usually entails a large investment as well as complicated and costly operations and management. MobilityGuard Datacenter Edition enables you to easily deliver Access Management as a Service to your end user customers. By means of Access Management you can administer the whole operation and management of the security functionality that your end customers and partners require. Five key benefits The 5 key benefits of the MobilityGuard Datacenter are: Low initial cost since no investment in hardware or software is needed Very fast installation and minimal set up times Continuous support and maintenance programs provide access to the latest security standards and technology Easy budgeting with minimal additional costs Charges are based on effective usage only The full range of Secure Access Services MobilityGuard Datacenter Edition includes a wide range of security services: Secure Login with strong authentication usually with SMS or certificates Secure communication with secure session handling Intelligent centralized Single Sign-On Dynamic Authorization Control Support for easy integration with any application or web portal User Identity Federation Self-Service for users, e.g. password reset Digital Signing of any electronic information Datacenter Appliances The solution for Access as Service is available as a fully configured appliance: The MobilityGuard 3000, 4000-and 6000 Series, 19 rack server Appliances, scalable up to 5000 concurrent users per appliance Virtual Appliances running on VMware, Hyper-V or XEN-Server

SECURE YOUR ESERVICES AND EBUSINESS Secure your eservices and ebusiness How do you deliver your eservices and ebusiness securely? How can I deliver eservices, web and non-web based in a secure way to any of my customers and partners? How shall I deal with the management of all user accounts and all security issues on the connecting computer and my application or service? How can I protect my network against malicious code from remotely connected devices? How can I manage the necessary security functions required for identifying users, securing communications and other security issues arising from my eservice or ebusiness application? How can I protect all my eservices and ebusiness Solutions in a cost effective way? Secure everything in ONE single product MobilityGuard OneGate solves all security issues for your services and business in a single product. With MobilityGuard OneGate your business is protected with all the required functions. At the same time OneGate enables a closer and better cooperation with your customers or partners through functionality such as identity federation, digital signing Single Sign-On etc. Make it happen The OneGate solution is available as physical or virtual appliances. The physical appliances are available in three models (MOG3000, MOG4000 and MOG6000) designed for small, medium and large organizations. MobilityGuard OneGate Virtual appliances are delivered for virtual environments such as VMware, Microsoft Hyper-V and XEN Server. Take off within an hour No modifications are needed to the eservice or ebusiness application so that you are ready to take off within an hour. Why not make a test flight?

SALES OFFICES Sales Offices MobilityGuard HQ (Sweden) August Barks gata 23B 421 32 Västra Frölunda Sweden Phone: +46 31 760 6770 MobilityGuard UK Crowthorne Enterprise Centre Old Wokingham Rd, Crowthorne RG45 6AW United Kingdom Phone: +44 1344 752740 MobilityGuard Europe 3, rue Gustave Eiffel Espace Media Le Technoparc 78306 Poissy Cedex MobilityGuard Deutschland Bülowstraße 20 22763 Hamburg Germany Phone: +49 40 38 90 71-29 France Phone: +33 1 75 43 78 90 MobilityGuard Italia Via Ildebrando Vivanti, 201 00144 Roma Italy Phone: +39 06 997 04 927

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information