Propalms Network - Secure Remote Access, Terminal Services, SSL VPN, Offshore Product Development

Propalms SSL VPN – Secure Remote Access

Propalms VPN is an easy to use, simple application access and security solution (SSL VPN) for enabling high-trust, secure remote access to corporate applications and resources. Enterprises use Propalms VPN to collaborate securely with employees, customers and partners.
Using intelligent access control and endpoint security features, Propalms VPN provides the most secure platform for connecting to your corporate applications and data.

• Reduced Costs
centralize management; consolidate data centers, lower administration costs.

• Investment Protection
utilize existing networks, firewalls, servers, clients and software.

• Trusted Remote Access
extend access to regional offices, partners, customers, telecommuters, wireless users.

• Easy to Use
fast installation and little ongoing management, reduced training, less down-time.

• Continuous Access
provide reliable, available and scalable access.

• Application Support
allows access to virtually any application, including all TCP, 802.11x and UDP applications, Microsoft Outlook, FTP, Propalms TSE, and Microsoft Terminal Servers. Even custom or proprietary applications and protocols are supported by the Propalms SSL VPN.

• Secure Firewall Traversal of TCP/UDP
allows local desktops to access UDP-based remote data services, without segregating the network, exposing UDP port ranges to hackers, using routable IP addresses, or publishing internal routes externally. Propalms VPN works alongside existing firewalls, and NAT devices.

• Authentication and authorization architecture
supports different group access policies via leading protocols (LDAP, Active Directory, RADIUS, and more).

• Centralized Access Control
manages granular access control by source, destination, domain name, user group, port, host, or network thereby, increasing security and dramatically simplifying firewall configuration.

• Single Mode Connectivity
enables remote access to any application, including web-enabled and legacy applications, through a simple interface with the look and feel of the user's native desktop.

• Load Balancing and High Availability
automatically distributes application network traffic among multiple VPN Servers with integrated failover to available servers.

• SSL VPN
users may access applications from a standard portal interface or directly from their desktop, for an IPSec like “in office” experience.

• Clientless browser-based access
provides secure remote access to applications through common web browsers. No clients to install or maintain.

• Endpoint Security
enforces access restrictions based on customizable policies such as Anti-virus, Anti-spyware and firewall status.

DEPLOYMENT SCALABILITY

• Scalable to 200,000 users

• Active-Active N+1 cluster

• Resource based VPN Load balancing with multiple load balancer

• Session Persistence: Users do not need to re-authenticate

APPLICATION SUPPORT

• All web based, TCP and UDP based client-server applications

• Windows File Shares and Drive Mapping

• Dynamic port based applications

• Special support for RDP virtual channels

• Application load balancing

• Session Caching for load balanced applications

• Per application based compression switch

ACCESS SECURITY FEATURES

• SSL 3.0 and TLS 1.0

• Encryption: Strongest available: DES, 3DES, AES(256), RC4

• Authentication: MD-5, SHA-1, RSA 1024, RSA 2048

• Internet network masking and IP address/hostname mangling

• Application level gateway and not layer 2 bridging

• Hardened Gateway Operating System

AUTHENTICATION FEATURES

• Authentication based on user identity, endpoint identity, endpoint trust level

• Multiple User authentication options: static passwords, client certificates, External two factor authentication solutions

• Local database with full customization per user, password policies, password reset support

• Fully integrated client-certificate based two factor authentication server with automatic CA and certificate provisioning

• Email based user provisioning

• Authentication method based application access control

• Integrates with AD/LDAP/RADIUS

• Automatic fetching of group information from AD/LDAP/RADIUS

• Biometric authentication support

AUTHORIZATION FEATURES

• Publish applications rather than subnet or network

• Simple access control mechanism

• Access control based on

o Device identity and profile

o User Authentication method

o User Role

• Dynamic policy evaluation based on run time information about device, authentication method and user role

• Display of allowed applications and availability of the application server to users

• Time based restriction policies

• Auto-detection of applications running in corporate network

AUDITING FEATURES

• Complete reporting of user logons and activity

• Information logged includes

• Email Access
Use your local Outlook or Lotus Notes client to access corporate email system.

• File Shares and FTP
directly access the files and shares residing on the corporate network.

• Web Applications
access any http/s based applications.

• Propalms TSE and Terminal Services
secure connection to RDP based applications.

• Other Applications
provide access to any TCP/UDP based applications.