Juniper Networks Secure Access 2500

End-to-end layered security

• Endpoint client, device, data and server security controls security
• Identity-driven secure access specified by user group or role, as well as by network, device, and session attributes

Lower total cost of ownership

• No client-software deployments or changes to servers, and virtually no ongoing maintenance
• Secure remote access, intranets, and extranets from one platform
• Secure extranet access with no DMZ build-out, server hardening, resource duplication, or incremental deployments to add applications or users

Streamlined manageability

• Central management option for unified administration
• Self-service features for users, for lower help desk support costs
• Fine-grained auditing and logging
• Three different secure access methods, to let administrators provision by purpose
• Role-based delegation of administrative tasks

High availability

• Cluster pair deployment option, for high availability across the LAN and the WAN
  

The Juniper Secure Access range offers a wide range of services which include:

• Secure meeting – allows organisations to set up secure online meetings and user-to-user collaboration. This is a cost-effective, easy to use web conferencing tool which requires no software and allows virtual teams to share applications in real time. Secure Meeting is a fully flexible cross-enterprise infrastructure which doesn’t rely on any operating system, provides high level of security with Microsoft OutlookTM invitation capabilities.

• Advanced Endpoint Defence: Malware Protection (for additional users) – each appliance comes with Integrated malware protection for specific number of users with the capability to expand for additional users. Organisations are able to dynamically deliver malware protection to endpoints, targeting and disabling threats such as Trojan Horses, Key Loggers, Remote controls and monitoring applications.

• Clustering - Secure Access offers clustering for high availability to multiply aggregate throughput for unexpected bursts in traffic and mitigating resource-intensive application use, as well as providing stateful failover capabilities from one appliance to another.

• SSL Acceleration – This hardware acceleration module increases performance by offloading intensive encrypt/decrypt processes to the CPU

• ICE (In Case of Emergency) – Remote access capabilities can really be stretetched in the event of a disaster due to more employees, partners and customers suddenly creating a burst of demand. ICE is able to deliver during those sudden peaks in demand by enabling an organisation to make an immediate response by expanding remote access connectivity in a very cost-effective manner. ICE is able to provide licenses for a large number of additional users on a Secure Access SSL VPN appliance for a limited time.

• Instant Virtual Systems (IVS) – IVS is a framework which allows administrators or service providers to completely segment SSL VPN between multiple groups and customers within a single appliance/cluster. The administrator benefits from the IVS because they only have to manage one device/cluster. This is due to the IVS featuring complete application-layer, network-layer and access management virtualisation enabling end groups to experience their own SSL VPN deployment.