Dell SonicWALL E-Class Secure Remote Access (SRA) Overview Stuart Lisk Sr. Product Manager Matthew...
-
Upload
felix-marshall -
Category
Documents
-
view
219 -
download
4
Transcript of Dell SonicWALL E-Class Secure Remote Access (SRA) Overview Stuart Lisk Sr. Product Manager Matthew...
Dell SonicWALL E-Class Secure Remote Access (SRA) Overview
Stuart Lisk
Sr. Product Manager
Matthew Dieckman
Product Line Manager
2 Dell Software GroupConfidential
E-Class SRA Overview
Mobile VPN delivers granular access control to mission critical resources from any end-point including desktops, laptops, smartphones and tablets for all the popular operating systems including Windows, MAC, Android, and iOS for the enterprise using leading SSL VPN technology.
3 Dell Software GroupConfidential
Drivers and Trends
Business Drivers• Reduction in operating costs
• Focus on TCO
• Mobilization of the workforce
• The proliferation of BYOD policies
• Business expanding globally
• Compliance
• Outsourcing growth
• Gaining competitive advantage
Technology Drivers• Growth in real-time applications
• SaaS /Web 2.0
• Virtualization of services
• Data Center consolidation
• Ubiquity of broadband
• Proliferation of mobile/tablet devices
• Rise in IP telephony
• Endpoint interrogation
The Communications Landscape Continues to Evolve
4 Dell Software GroupConfidential
Secure Remote Access Drivers
Remote Access Give all employees remote access solution that is easy to use and deploy.
During a business disruption, demand for remote access could spike to include the majority of your workforce.
Disaster Recovery
The Bring Your Own Device (BYOD) movement has been fueled by the dramatic growth and adoption of mobile platforms.
Mobility and BYOD
Extranet AccessOpen access to partners to increase collaboration, yet do it in such a way that access control and security is not compromised.
Rising transportation costs and environmental concerns are leading an increase in flexibility regarding working from home.
Working ‘Green’
Many organizations treat users on the wireless network as remote users due to concerns over who has wireless access.
Securing Wireless Networks
5 Dell Software GroupConfidential
E-Class Secure Remote Access Appliances
Dell SonicWALL E-Class SRA EX7000
The Dell SonicWALL Family of E-Class Secure Remote Access Appliances
Dell SonicWALL E-Class SRA EX6000
Dell SonicWALL E-Class SRA Virtual Appliance
Dell SonicWALL E-Class SRA EX9000
6 Dell Software GroupConfidential
Easy
to U
se. Easy
to C
ontr
ol.
Dell SonicWALL Aventail Remote Access
End Point Control™ (EPC™): detects the identity and security state of the end device
Unified Policy™: is the enforcement engine, controlling device access so users only access applications they are authorized forSmart Access™ and Smart Tunneling™: are the transport mechanisms, making it easy and secure for users to access all network resources
Detect
Protect
Connect
SSL VPNs Can….
7 Dell Software GroupConfidential
Secure Remote Access Functions
Business Partner from any Browser
Customer/Supplier Behind a Firewall
Extranet Access
Internal Users
Internal Access
Dell SonicWALL SSL VPN SolutionTraveling
Employee
Day Extender
Employee at a Kiosk
Employee Using a Wireless Hotspot
Remote Access
Employee Smart Phones/ Tablets
Protect applications with granular access control based on user identity and device integrity
Detect what is running on the end point device
Connect users securely and easily to applications on any device
Connect
Web Apps
Client/Server Apps
File Shares
Databases
VoIP
VDI Infrastructure
ApplicationsDirectories
Corporate Perimeter
LDAP
AD
RADIUS
Best of Breed Secure Remote Access that ensures the appropriate level of access for any remote access use case
LDAP
Detect Protect Connect
8 Dell Software GroupConfidential
Detect: End Point ControlDell SonicWALL E-Class SRA End Point Control interrogates managed and non-IT-managed devices prior to connecting to identify the device and determine the overall trust level
WorkPlace Access (Clientless Web
Access)
Connect Access (Client-Installed
Access)
Traditional Client/Server Applications
File Shares
VoIP Applications
Corporate Network
For Device Identity
Mapped DirectoryWindows Domain
MembershipDevice
Watermark/ Certificate
Any Resident FileWindows, Mac,
Linux Device IDMobile Device ID
EPC Device InterrogationAnd Device
Integrity Anti-VirusRegistry KeyWindows O/S LevelPersonal FirewallAnti-Spyware
Interrogate by Device Profile
IT ManagedNon-Managed
WindowsWindows
MobileMacintoshLinuxiOS/Android
With Data Security
Cache ControlSecure Desktop
9 Dell Software GroupConfidential
Protect: Unified PolicyDell SonicWALL E-Class SRA object-based Unified Policy enables application control via easy to setup and manage access rules, covering all devices types and users.
Define Trust Level for
Users
Your Company
Employee Community
Define Trust Level for Devices
Groups: Sales, Marketing, Executive
Partner Community
Groups: Partners
Allow
Quarantine
Deny
Allow
Quarantine
Deny
• Create allow, deny and quarantine rules easily that govern access for all users and devices based on device identity and device integrity
• Just one rule set enforces access to all resources across all access methods based on who the user is and the trust level for the device
Application:
User Trust:
Device Trust:
Sales, Executive
Define What Applications
Users/Devices can Access
Access Control List
CRM App
All in Empl. Community
OWA
Sales, Partners
Order Entry
Ad
mis
sio
n
Con
trol
10 Dell Software GroupConfidential
Protect: User Trust
• Directory Browsing
• Dynamic Groups
• Dual/Stacked Authentication
• Forms-Based Authentication
• Virtual Keyboard
• Password Management
• One-Time Password
11 Dell Software GroupConfidential
Protect: Access Control
• Single unified policy interface to manage all access across all types of applications and access methods
• Granular application access control based on who the user is and the trust level for the device
– Block attachments in Webmail– Leverage user variables to provide direct
access to user specific file shares and remote desktops
• Bi-directional access control for added security with remote helpdesk and VoIP
12 Dell Software GroupConfidential
Protect: Virtual Assist
How it Works: 1. Technician launches lightweight client to monitor queue or invite a specific customer via
email2. Customer logs on to portal and requests help or accepts the email invitation3. Meanwhile, a lightweight client is pushed seamlessly through the browser to the Customer4. Technician sees Customer in queue and requests access to computer5. Customer gives permission and remote support session begins
Remote EmployeesTechnicia
n
Virtual Assist is a remote support tool that enables a technician to assume control of a customer’s PC or laptop for the purpose of providing remote technical assistance
Supported OS types includes Windows, Mac and Linux
SonicWALL Virtual Assist provides organizations with an easy to use remote support tool
13 Dell Software GroupConfidential
Connect: Access from Managed and Unmanaged Devices
Welcome to the myCompany Remote Access Portal
https://myhomepage.mycompany.com
WorkPlace Access: Access to web-based and client/server applications from virtually any device
14 Dell Software GroupConfidential
Connect: WorkPlace Web Portal
The Workplace Web Portal provides transparent access for web applications, client/server applications, and file shares
•Customizable Web portal
•Personal Bookmarks
•Multiple WorkPlace sites
•Smart Access
•OnDemand Tunnel
•Native Access Modules
•WorkPlace Mobile
15 Dell Software GroupConfidential
Connect: SonicWALL E-Class SRA Connect Tunnel
Provides secure policy controlled network access from a Web deployed/delivered Windows, Macintosh or Linux client, providing a complete “in-office” experience.
•Easy provisioning•End Point Control
•Split tunneling
•Auto updating
•NAT Mode
•Unified policy
Thin Client/Server Applications
Traditional Client/Server Applications
Web-based Applications
File Shares
16 Dell Software GroupConfidential
Connect: Mobile Connect for iOS
Dell Aventail E-Class SRA Appliances
Dell SonicWALL SRA Appliances
Dell SonicWALL Next-Generation
Firewalls
Step 1: Download
Mobile Connect
Step 2:Install Mobile
Connect
Step 3: Configure SSL VPN
Connection
17 Dell Software GroupConfidential
Connect: Mobile Connect Android
Dell SonicWALL Aventail E-Class SRA
Appliances
Dell SonicWALL SRA Appliances
Dell SonicWALL Next-Generation
Firewalls
Step 1: Download
Mobile Connect
Step 2:Install Mobile
Connect
Step 3: Configure SSL VPN
Connection
18 Dell Software GroupConfidential
Detect: EPC for iOS/Android Devices
EPC options for iOS•Determine jailbreak status•DeviceID (Based on the UDID of the iOS device)
•Certificate enforcement•OS version control
EPC options for Android•Determine root status•DeviceID (Based on the IMEI of the Android device)
•Certificate enforcement•OS version control•Enforcement of anti-virus
19 Dell Software GroupConfidential
Connect: ActiveSync Support for Mobile Devices
• Mobile ActiveSync support allows access to email, calendar and contacts from a variety of mobile devices through the Dell SonicWALL Aventail SSL VPN
•Cross-platform support: iPhone, iPad, Android devices, Windows Phone 7, Symbian
•Clientless Email, Calendar and Contact access through the Dell SonicWALL Aventail SSL VPN - eliminating the need to provide direct access from remote devices to the Exchange server
20 Dell Software GroupConfidential
Dell SonicWALL Aventail Product OverviewE-Class Virtual Appliance E-Class SRA EX6000
Target Customer
Mid-size Enterprise with up to 5,000 employees
Small –to-Midsize Enterprise with 500 to 1,000 employees
Concurrent Users
Can be licensed with a 5, 10, 25, 50, 100, 250, 500, 1,000, 2,500 or 5,000 concurrent user stackable license
Can be licensed with a 5, 10, 25, 50, 100 or 250 concurrent user stackable license
Add-On Features
• Spike License- Allows for the immediate increase of the remote user count in the event of a business disruption
• Native Access Modules- Optimized access for WTS, VMware View and Citrix applications
• Advanced EPC- Granular control with easy configuration for trusting end point devices
• Virtual Assist- Remote desktop help and support tool
• SonicWALL Aventail Advanced Reporting- robust hierarchical log analysis tool
• E-Class Support- 24x7 support for E-Class solutions
• Spike License- Allows for the immediate increase of the remote user count in the event of a business disruption
• Native Access Modules- Optimized access for WTS, VMware View and Citrix applications
• Advanced EPC- Granular control with easy configuration for trusting end point devices
• Virtual Assist- Remote desktop help and support tool
• FIPS Support- License required for FIPS mode
• SonicWALL Aventail Advanced Reporting- robust hierarchical log analysis tool
• E-Class Support- 24x7 support for E-Class solutions
21 Dell Software GroupConfidential
Dell SonicWALL Aventail Product Overview E-Class SRA EX7000 E-Class SRA EX9000
Target Customer
Mid-to-Large Enterprise with over 1,000 employees
Large Enterprise with over 1,000 employees
Concurrent Users
Can be licensed with a 5, 10, 25, 50, 100, 250, 500, 1,000, 2,500 and 5,000 concurrent user stackable license
Can be licensed with a 5, 25, 50, 100, 250, 500, 1,000, 2,500 and 5,000, 7,500, 10,000, 15,000, 20,000 concurrent user stackable license
Add-On Features
• Spike License- Allows for the immediate increase of the remote user count in the event of a business disruption
• Virtual Assist- Remote desktop help and support tool
• SonicWALL Aventail Advanced Reporting- robust hierarchical log analysis tool
• E-Class Support- 24x7 support for E-Class solutions
• Spike License- Allows for the immediate increase of the remote user count in the event of a business disruption
• Virtual Assist- Remote desktop help and support tool
• FIPS Support- License required for FIPS mode
• SonicWALL Aventail Advanced Reporting- robust hierarchical log analysis tool
• E-Class Support- 24x7 support for E-Class solutions
22 Dell Software GroupConfidential
Spike Licensing
• Allows the purchase of temporary capacity increases to be used in the case of an emergency
– EX Virtual Appliance: ‘Spike’ to 5,000 concurrent users– EX6000: ‘Spike’ to 250 concurrent users– EX7000: ‘Spike’ to 5,000 concurrent users– EX9000: ‘Spike’ to 20,000 concurrent users
• Spike licenses available for increasing from any user count, including 5-user Lab appliances
• Spike licenses available in 10-Day and 30-Day increments
– Supports start and stop, allowing for flexibility in how the license is applied
23 Dell Software GroupConfidential
One Gateway to Meet your Secure Remote Access Needs
Dell SonicWallE-Class SRA
Secure Remote Access
Dell SonicWALL E-Class SRA is the only SSL VPN that provides one solution with centralized management for all devices, applications, and users, delivering manageability, security, and productivity
Thin Client/Server Applications
Traditional Client/Server Applications
Web-based Applications
File Shares
Wireless LANs
IT-Managed Devices
Internal Users
SonicWALL Aventail® Connect™A Web-delivered client, for complete network access and unmatched ease-of-use
SonicWALL Aventail® WorkPlace™Clientless browser access for Web apps, client/server apps and file shares
Service Edition:
Application-to-Application
Smartphone/ Tablet Users
Kiosk Users
Business Partners
Teleworkers
Managed
Devic
es
Unm
anaged
Devic
es
iOS, Android smartphones and tablets
Dell SonicWALL Mobile Connect™