Juniper Networks Secure Access 2000

Overview

The Juniper Networks Secure Access 2000 (SA 2000) SSL VPN enables small- to medium-sized companies to deploy cost-effective extranet and remote access, as well as intranet security. Users can access the corporate network and applications from any standard Web browser. The SA 2000 uses SSL, the security protocol found in all standard Web browsers, as a secure access transport mechanism. The use of SSL eliminates the need for client-software deployment, changes to internal servers, and costly ongoing maintenance. Juniper's Secure Access appliances also offer sophisticated partner/customer extranet features that enable controlled access to differentiated users and groups, with no infrastructure changes, no DMZ deployments, and no software agents. This functionality also allows companies to secure access to the corporate intranet, so that administrators can restrict access to different employee, contractor, or visitor populations, based on the resources that they need.

The SA 2000 comes with the streamlined feature set that an enterprise would need to deploy secure remote access, as well as a basic customer/partner extranet or secure intranet. The Advanced license enables additional sophisticated features that meet the needs of more complex deployments with diverse audiences and use cases, as well as Juniper's Central Manager.

Features & Benefits

Key features and benefits of the Secure Access 2000 include the following:

• End-to-end layered security
  • Endpoint client, device, data and server security controls
  • Juniper Networks Endpoint Defense Initiative, for best-in-class endpoint security
    • Identity-driven secure access specified by user group or role, as well as by network, device, and session attributes
• Lower total cost of ownership
  • No client-software deployments or changes to servers, and virtually no ongoing maintenance
  • Secure remote access, intranets, and extranets from one platform
  • Secure extranet access with no DMZ build-out, server hardening, resource duplication, or incremental deployments to add applications or users
• Streamlined manageability
  • Central management option for unified administration
  • Self-service features for users, for lower help desk support costs
  • Fine-grained auditing and logging
  • Three different secure access methods, to let administrators provision by purpose
  • Role-based delegation of administrative tasks
• High availability
  • Cluster pair deployment option, for high availability across the LAN and the WAN

Options

Secure Application Manager (SAM) and Network Connect (NC) Upgrade

Using SAM, administrators can provide the full functionality of client-server applications when and where required. Using NC, administrators can also provide all of the functionality of an IPSec VPN and an SSL VPN from one platform, reducing overall cost and simplifying day-day management.

Advanced Feature Set

The Advanced Feature Set includes additional sophisticated capabilities that will meet the needs of more complex deployments with diverse audiences and use cases, including Central Manager, customized user interfaces, Single Sign-On and multiple hostname support.

Secure Meeting

Juniper Networks' Secure Meeting option enables enterprises to instantly and securely provision online meetings and user-to-user collaboration. The Secure Meeting option is a cost-effective, easy to use "point and click" Web conferencing tool which, like SSL VPN, requires no software to be deployed and enables communication between virtual teams to share applications in real-time. It is a flexible cross enterprise infrastructure with no operating system dependencies, offers the high level of security of SSL VPN and even has integrated Microsoft Outlook^TM invitation capabilities.

Advanced Endpoint Defense: Malware Protection (for additional users)

Integrated malware protection for a specific number of users comes with each appliance out of the box, with the capabilities to add coverage for additional users. It enables enterprises to dynamically deliver malware protection to endpoints, disabling threats such as Trojan Horses, key loggers, remote controls and monitoring applications.

Clustering

Secure Access offers clustering for high availability to multiply aggregate throughput for unexpected bursts in traffic and mitigating resource intensive application use, as well as providing stateful failover capabilities from one appliance to another.

SSL Acceleration

SSL Acceleration (available on select platforms) enhances performance by offloading intensive encrypt/decrypt processes from the CPU.

ICE (In Case of Emergency)

The need for remote access capabilities in the event of a disaster (e.g. pandemic) can put a sudden strain on remote connectivity requirements as more employees, partners and customers suddenly create a burst of demand. ICE delivers on that sudden peak in demand by providing the ability for a company to have immediate response by expanding remote access connectivity in a cost effective manner. ICE (available on select platforms) provides licenses for a large number of additional users on a Secure Access SSL VPN appliance for a limited time.

SSL Instant Virtual Systems (IVS)

IVS (available on select platforms) is a framework that enables administrators or service providers to completely segment SSL VPN traffic between multiple groups or customers within a single appliance/cluster. IVS features (available on select platforms) complete application-layer, network-layer and access management virtualization so that end groups can have the experience of their own SSL VPN deployment, while the administrator only has to manage one device or cluster.

Accessories

A variety of accessories including spare racks and power cords are available for Secure Access. GBIC-based ports for the SA6000 provide flexibility to select SX, LX, and copper-based interfaces.

Demos

Juniper Networks Secure Access SSL VPN Demo

This Flash demo will introduce the market-leading Juniper Networks Secure Access SSL VPNs, as well as the Secure Meeting functionality for secure cross-enterprise online collaboration. The demo will show where the Secure Access SSL VPNs fit in the network and how they are integrated into the overall Juniper Networks security portfolio. Discover how the Juniper Networks Secure Access appliances can leverage an existing investment in security infrastructure, enabling secure LAN, intranet or extranet access from a single platform. Then see how it all comes together in an actual end user experience. See the demo

Literature

Brochure

• SSL VPN Solutions Portfolio930 KB

Datasheets

• Juniper Networks Secure Access 2000, 4000, and 6000 Appliances417 KB
• Juniper Networks Secure Access SSL VPN High Availability Clustering83 KB
• Juniper Networks Secure Access SSL VPN Secure Meeting Option300 KB
• SSL QuickStart Service157 KB

Solution Briefs

• AppFlow for SSL: Optimizing SSL-Encrypted Applications over the WAN279 KB
• Juniper Networks and Oracle Deliver Simple and Secure Remote Access in Complex Application Environments591 KB
• End-to-End Security with Juniper Networks Secure Access SSL VPN101 KB
• Step Up Your Business Success with Secure Access SSL VPN Mobility72 KB
• Juniper Networks Solution for Secure Access to TCC Applications126 KB
• Coordinated Threat Control with Secure Access SSL VPN and IDP Intrusion Prevention124 KB

White Papers

• SSL VPN: The Ideal Approach for Secure Access to Thin-Client Computing Applications604KB
• Building an Extranet Portal158 KB
• Optimizing the Data Center with Juniper Networks1.4 MB
• SSL VPN Decision Guide for Small to Medium-Sized Enterprises102 KB
• The Business Case for Building an Extranet Portal124 KB
• Juniper Networks VPN Decision Guide107 KB

Case Study

• Catholic Health System46 KB

View all Juniper Networks Literature