Professional Documents
Culture Documents
com
Key Benefits without having to distribute or manage client session. VPN Gateway can even prevent
software. An on-demand model helps further users from saving or printing data during the
Easy to deploy, cost-effective ensure that any required client side software session.
solution is loaded when needed and removed at the
The Avaya VPN Gateway is a software- Business continuity services
end of the session. When connected, end-
based solution designed to run on VMware VPN Gateway VMware servers can be
users are granted access only to the data
compliant hardware. This allows for easy clustered to deliver reliable business
and applications they require.
deployment on existing or new servers. A continuity services. Clustering allows the
seat based licensing model further allows Increase employee productivity — VPN Gateway servers to function as a single
for secure access services based on an teleworkers, day extenders, mobile system with redundancy services. Clusters
enterprise’s need and performance. Along users can also be deployed in multiple locations
with 10 and 50-user license starter packs, Remote workers can have full network to provide site redundancy and optimum
the VPN Gateway is a cost-effective way to access without losing the functionality they performance for a widely-distributed
get advanced secure access technology at an normally have within a traditional office workforce. Avaya also makes it cost-effective
entry-level price. environment. By providing application to deploy access capacity for worst-case
access over a standard broadband or scenarios through Emergency Remote
Extend access to partners, Internet connection, the Avaya VPN Access (ERA) user licenses that help ensure
contractors, customers Gateway can provide huge cost savings capacity is available when needed.
The Avaya VPN Gateway leverages browser-
to the enterprise. It can also be used by
based software already available on a
mobile workers, enabling them to connect
user’s PC to provide secure remote access.
from hotels, hotspots and from within other Key Capabilities
This enables enterprises to extend access
enterprise networks for convenient anytime, Flexible, universal secure access
anywhere access. Avaya VPN Gateway offers flexible access
options to address a wide range of enterprise
Protect information, assets, requirements and needs. Support for both
networks SSL and IPSec on a common appliance also
Administrators can guard against information eliminates the need to deploy and maintain
loss or theft without burdening end users separate VPN devices and/or vendor
with intrusive, hard-to-use security features. relationships. Key capabilities include:
Fine-grained access controls help ensure
users get access to only what is necessary to • Clientless web access enables access
perform their job function — nothing more, to web-based e-mail, file systems and
nothing less. Flexible endpoint security web applications from any web browser
scan and block features allow on-demand through on-the-fly content transformation.
validation of unmanaged endpoints. And
cache cleaning helps ensure no data
remains on the endpoint at the end of the
FACT SHEET 1
avaya.com
Layered security
KEY VPN GATEWAY FEATURES Designed as a hardened security/web
appliance, Avaya’s VPN Gateway provides a
• Easy to deploy software solution for VMware environments
suite of safeguard features to help protect
the enterprise against malicious intent and
• Flexible, universal secure access for SSL and IPSec users
user negligence. These include:
• Secure access to all applications, including voice and multimedia, from a web browser • Endpoint Access Control Agent (for SSL and
IPSec) that performs endpoint security
• MultiOS endpoint support including Windows, Mac, Linux and PDA checking on both client and clientless
VPN endpoints. Enables administrators to
• Dynamic role-based access to applications and resources define endpoint security policies on the
VPN Gateway itself and helps ensure that
• Strong endpoint security and information protection remote users/devices are inspected for
compliance before access is granted.
• Log and audit trails for compliance
• Cache cleaner for endpoints that helps
ensure software downloads and temp files
installed at login are erased at logout,
• Net Direct provides full network-layer security tracking purposes as well as user/ allowing no data to be left behind.
access with no need to pre-install a VPN capacity planning. Capabilities include:
client. Automatic download of Net Direct • Strong user authentication that includes
to the endpoint enables access to all TCP • Role-based policy model that tightly support for best-of-breed options —
and UDP applications, including voice, integrates with existing identity including secure tokens, smart cards and
multimedia and collaboration tools from management and directory services to X.509 certificates.
Windows, Macintosh and Linux endpoints. assign user access privileges based on
defined roles. • Flexible access controls that can be
• IPSec VPN client access includes support tailored to how or from where a user
for the Avaya VPN Client. This allows • Dynamic context-sensitive portal that is accessing the network; for example,
enterprises to support users with an enables administrators to control access full network access from a managed PC
IPSec requirement on Windows, Mac, based on source IP, browser type, digital versus intranet and e-mail access from a
PDA and Unix-based clients. certificates or other parameters before less trusted device.
login is complete.
• Mobile device support (both SSL and • Auto log-off that automatically terminates
IPSec VPN) for tablet PC, PDA (Pocket • Single sign-on capability that alleviates the a session after a configurable period of
PC, Palm) and Smart Phones (WAP- need for end users to enter and maintain inactivity to address security in public
browsers) with small device formatting multiple sets of credentials for web-based and shared device situations.
options to support highly mobile user applications.
devices and applications such as Outlook • Private-side encryption that meets
Mobile Access. • Portal personalization that allows dynamic mandated legislative requirements for
generation of the portal based on user data confidentiality and security (HIPPA,
Dynamic access and policy profile. GLB, Patriot Act, etc.).
management
The Avaya VPN Gateway provides dynamic • Access management that includes granular • Portal Guard is a unique feature that
access policy management to help ensure control at the URL, server or file level – offloads SSL termination and public
simplified yet highly secure provisioning enabling security policies to be tailored to key operations from internal servers and
of users and groups with the enterprise. specific resources. provides a low-cost means for secure
The gateways also provide granular access access to internal enterprise portals.
control, auditing and logging for both
2
avaya.com
3
Other Features & Capabilities Management Feature Licenses
Load balancing • Secure administrative Web GUI (HTTPS) • Portal Guard
• SSL service load balancing via clustering
• Serial port to CLI • Secure Portable Office Feature
• Load balancing of back-end services
to include Source IP and round robin • Local logging, external Syslog Concurrent User Licenses
session persistence • SSL and IPsec User licenses
• VPN Cluster Manager – Multi-site
• Source IP, SSL session ID, cookie management and monitoring • Emergency Remote Access (ERA)
information application health checking
Browser support • SSL On Demand Protection (SODP)
• SSL w/TCP/IP/Port • Microsoft Windows (2000, XP, Vista,
Windows 7) • IPSec Only
• Scriptable, configurable intervals
• Internet Explorer 6 or greater • Secure Portable Office Client Licenses
Application support (per seat)
• Access to web-based, client/server and • Mozilla FireFox 3.0 or greater
native terminal server applications
• MacOS 10.4 or greater Learn More
• Network-layer native desktop application To learn more about the Avaya VPN Gateway
access via SSL or IPSec mode Web • Safari 3.0 or higher please contact your Avaya Account Manager
content and protocols or Avaya Authorized Partner or visit us at
Modes of operation
avaya.com.
• HTML/DHTML • Clientless—HTML to browser
About Avaya
Avaya is a global leader in enterprise communications systems. The company
provides unified communications, contact centers, and related services directly
and through its channel partners to leading businesses and organizations
around the world. Enterprises of all sizes depend on Avaya for state-of-the-art
communications that improve efficiency, collaboration, customer service and
competitiveness. For more information please visit www.avaya.com.