Celestix WSA SSL VPN appliances now deliver Microsoft Forefront Unified Access Gateway 2010 for secure remote connectivity

Celestix Overview

WSA - Unified Access Gateway Series

Celestix WSA Unified Access Gateway delivers ready-to-deploy, comprehensive, secure remote access to corporate resources for employees, partners, and vendors on both managed and unmanaged PCs and mobile devices. Utilizing a combination of connectivity options, ranging from SSL VPN to DirectAccess, as well as built in configurations and policies, WSA provides centralized and easy management of an organization’s complete anywhere access offering.

Celestix WSA SSL VPN appliances now deliver Microsoft Forefront Unified Access Gateway 2010 for secure remote connectivity.

Integrating a deep understanding of the applications published, the state of health of the devices being used to gain access, and the user’s identity – Celestix WSA enforces granular access controls and policies to deliver comprehensive remote access, ensure security, and reduce management costs and complexity.

Enquire about this product

X VirusnX SpywarenX SpamnX Web/IMn5 IPS/Patch Mgmtn5 Data/System Mgmtn

Celestix WSA SSL VPN appliances now deliver Microsoft Forefront Unified Access Gateway 2010 for secure remote connectivit

Celestix WSA Key Features

Providing network services to remote users is a challenge. Different classes of remote users need to access key network applications using public and private endpoints across intermediate networks. Unsecured remote access can disclose sensitive information left on endpoints and intermediate servers. If left unchecked, infected endpoints can be vectors for cybercrime.

WSA™ appliances from Celestix™ with Microsoft® Forefront™ Unified Access Gateway 2010 (UAG) are the right way to safeguard your network assets from the vulnerabilities of delivering network services via remote access.

WSA appliances are fully integrated solutions that let you provide employees, partners, customers, and other users with policy-based secure access to applications and data from any PC or device and any location. SSL encryption prevents unauthorized access to any sensitive information left on intermediate servers, while session wipers remove data from endpoints when sessions end. UAG's health and security checks prevent endpoints that don't comply with configurable health and security standards from connecting to the network. Best of all, UAG lets administrators expose only the applications, or parts of applications, to only the users or user classes they wish to authorize.

UAG also expands the options administrators have for managing Microsoft's new DirectAccess always-on VPN feature in Windows Server 2008 R2.

Control Access

Secure, web-based access to business critical applications and data:

Differentiated and policy-driven access to network, server, and data resources.
Flexible application-intelligent SSL VPN from any device or location.
Highly granular access and security policy enforced at the session, application, and function levels.
Comprehensive basic and form-based authentication through Active Directory®, RADIUS, LDAP, and SecurID®.
Customizable, identity-based web portal with single-sign-on (SSO).
Handles embedded browser applications.
Connectivity and control for client/server and legacy applications.
Management features for DirectAccess VPN.

Protect Assets

Integrated application protection helps ensure the integrity and safety of network and application infrastructure by blocking malicious traffic and attacks:

Application-layer firewall blocks non-conformant requests, such as buffer overflow or SQL injection, on application protocols.
Comprehensive protocol validation and deep content inspection with both positive and negative logic rulesets.
URL cloaking and full functionality for remote users through dynamic URL rewrite and HTTP parameter filtering.
Application Optimizers provide out-of-the-box protection for high value applications such as
SharePoint® Server, Microsoft® Outlook® Web Access, SAP®, and WebSphere®.
Comprehensive monitoring and reporting; integrates with third-party risk and policy management platforms.
Extensible infrastructure and tools for custom application publishing and scripting.

Safeguard Information

Comprehensive policy enforcement helps drive compliance with legal and business guidelines that require information usage criteria to limit exposure and liability when accessing sensitive corporate data:

Ensures network integrity by restricting client access based on endpoint security profile.
Strong endpoint security management and verification helps ensure endpoint health compliance and session control.
Enforces policy controls over actions within an application.
Cache-cleanup tailored to specific applications removes downloaded files and pages, URLs, custom caches, cookies, history, and user credentials.
Detects endpoint security state.

Client Access Licenses (CAL)

WSA customers must have UAG Client access licenses for each user using the gateway. IAG CAL’s cannot be applied to UAG systems therefore new CAL’s must be purchased. CAL’s can be purchased from Castleforce so please ask for more details if needed.

Compliance Standards

GCSX No 6 Access Control

GCSX No 10 Mobile / Home Working

PCI DSS 2.3 Encrypt all non-console administrative access

Requirement 4: Encrypt transmission of cardholder data across open, public networks

A.11.7 Mobile computing and teleworking

Simple Installation

As fully integrated appliances, WSA appliances are quick to deploy and easy to manage. Rack, connect, power, and input settings to have your WSA solution up and running in 20 minutes straight from the shipping box. The jog dial and front panel display let you input network settings and check status on the spot. WSA appliances have a single Web UI that lets you perform advanced configuration for both UAG and the WSA appliance conveniently from your desktop.

Celestix WSA Models

Click the image below to see the full range of Celestix WSA appliances.

Celestix WSA and DirectAccess

Celestix WSA Unified Access Gateway delivers comprehensive, secure remote access to corporate resources for employees, partners, and vendors from a diverse range of endpoints and locations, including managed and unmanaged PCs and mobile devices. Building on the secure remote access capabilities in Microsoft Intelligent Application Gateway 2007, Celestix WSA UAG draws on a combination of connectivity options, ranging from SSL VPN to Windows® DirectAccess, as well as built-in configurations and policies. These enable Celestix WSA to provide centralized and easy management and thereby reduce management costs. In addition, Celestix WSA integrates a deep understanding of the applications published, the state of health of the devices being used to gain access, and the user’s identity to enforce granular access controls and policies.

For more details on DirectAccess

Celestix WSA Secure Connectivity for Microsoft BPOS

Celestix WSA™ appliances with Microsoft UAG SSL VPN software and Celestix software customizations are the new, powerful solution for protecting access to BPOS. WSA appliances are the first and only solutions that deliver BPOS to users through Microsoft’s UAG SSL VPN. WSA appliances also offer a suite of unique features engineered by Celestix that enhance the security and performance of BPOS deployments as well as enable the integration of BPOS/UAG with existing network infrastructure.

For more details on WSA and VPOS connectivity