Juniper 80GB SA6500 UNIV-80G-HDD Datenbogen
Produktcode
UNIV-80G-HDD
4
Ease of Administration
In addition to enterprise-class security benefits, the SA2500, SA4500, and SA6500 appliances have a wealth of features that make it
easy for the administrator to deploy and manage.
easy for the administrator to deploy and manage.
Table 2: Ease of Administration Features and Benefits
Feature
Feature Description
Benefits
Bridge certificate authority
(CA) support
(CA) support
Enables the SA Series to support federated public key
infrastructure (PKI) deployments with client certificate
authentication. Bridge CA is a PKI extension (as specified
in rFC 5280) to cross-certify client certificates that are
issued by different trust anchors (root CAs). Also, enables
the customer to configure policy extensions in the SA
Series admin UI to enforce during certificate validation.
These policy extensions can be configured according to
rFC 5280 guidelines.
infrastructure (PKI) deployments with client certificate
authentication. Bridge CA is a PKI extension (as specified
in rFC 5280) to cross-certify client certificates that are
issued by different trust anchors (root CAs). Also, enables
the customer to configure policy extensions in the SA
Series admin UI to enforce during certificate validation.
These policy extensions can be configured according to
rFC 5280 guidelines.
Enables customers who use advanced PKI deployments
to deploy the SA Series to perform strict standards-
compliant certificate validation before allowing data and
applications to be shared between organizations and
users.
to deploy the SA Series to perform strict standards-
compliant certificate validation before allowing data and
applications to be shared between organizations and
users.
Based on industry standard
protocols and security
methods
protocols and security
methods
No installation or deployment of proprietary protocols is
required.
required.
SA Series investment can be leveraged across many
applications and resources over time.
applications and resources over time.
Extensive directory integration
and broad interoperability
and broad interoperability
Existing directories in customer networks can be
leveraged for authentication and authorization, enabling
granular secure access without recreating those policies.
leveraged for authentication and authorization, enabling
granular secure access without recreating those policies.
Existing directory investments can be leveraged with no
infrastructure changes—there are no APIs for directory
integration, as they are all native/built in.
infrastructure changes—there are no APIs for directory
integration, as they are all native/built in.
Integration with strong
authentication and identity
and access management
(IAM) platforms
authentication and identity
and access management
(IAM) platforms
Provides ability to support SecurID; Security Assertion
Markup Language (SAML), including standards-based
SAML v2.0 support, and PKI/digital certificates. Includes
SAML 2.0 support for web/cloud single sign-on (SSO).
Markup Language (SAML), including standards-based
SAML v2.0 support, and PKI/digital certificates. Includes
SAML 2.0 support for web/cloud single sign-on (SSO).
Leverages existing corporate authentication methods to
simplify administration, and allows enterprises to easily
and securely federate user identity with Software-as-a-
Service (SaaS) and other cloud-based applications.
simplify administration, and allows enterprises to easily
and securely federate user identity with Software-as-a-
Service (SaaS) and other cloud-based applications.
Multiple hostname support
Provides the ability to host different virtual extranet
websites from a single SA Series appliance.
websites from a single SA Series appliance.
Saves the cost of incremental servers, eases
management overhead, and provides a transparent user
experience with differentiated entry UrLs.
management overhead, and provides a transparent user
experience with differentiated entry UrLs.
Customizable user interface
Allows for creation of completely customized sign-on
pages, including customized landing pages for tablets.
pages, including customized landing pages for tablets.
Provides an individualized look for specified roles,
streamlining the user experience.
streamlining the user experience.
Juniper Networks Network and
Security Manager (NSM)
Security Manager (NSM)
Provides intuitive centralized UI for configuring, updating,
and monitoring SA Series appliances within a single
device/cluster or across a global cluster deployment.
and monitoring SA Series appliances within a single
device/cluster or across a global cluster deployment.
Enables companies to conveniently manage, configure,
and maintain SA Series appliances and other Juniper
devices from one central location.
and maintain SA Series appliances and other Juniper
devices from one central location.
In Case of Emergency (ICE)
(option)
(option)
Provides licenses for a large number of additional users
on an SA Series appliance for a limited time when a
disaster or epidemic occurs.
on an SA Series appliance for a limited time when a
disaster or epidemic occurs.
Enables a company to continue business operations by
maintaining productivity, sustaining partnerships, and
delivering continued services to customers when the
unexpected happens.
maintaining productivity, sustaining partnerships, and
delivering continued services to customers when the
unexpected happens.
Cross-platform support
Provides the ability for any platform to gain access to
resources such as Windows, Mac OS, Linux, or mobile
devices running various mobile operating systems,
including Apple iOS, Google Android, Microsoft Windows
Mobile, Nokia Symbian, and rIM Blackberry.
resources such as Windows, Mac OS, Linux, or mobile
devices running various mobile operating systems,
including Apple iOS, Google Android, Microsoft Windows
Mobile, Nokia Symbian, and rIM Blackberry.
Provides flexibility in allowing users to access corporate
resources from virtually any type of device using virtually
any type of OS.
resources from virtually any type of device using virtually
any type of OS.
Enterprise licensing
Allows any organization with one or more devices to
easily lease licenses from one appliance to another as
required to adapt to changing organizational needs.
easily lease licenses from one appliance to another as
required to adapt to changing organizational needs.
Provides administrators the ability to start with minimal
per-device licensing costs and then incrementally
upgrade to enterprise leased licensing capabilities as
needed.
per-device licensing costs and then incrementally
upgrade to enterprise leased licensing capabilities as
needed.
Rich Access Privilege Management Capabilities
The SA2500, SA4500, and SA6500 provide dynamic access privilege management capabilities without infrastructure changes, custom
development, or software deployment/maintenance. This facilitates the easy deployment and maintenance of secure remote access, as
well as secure extranets and intranets. When users log in to the SA Series SSL VPN Appliances, they pass through a pre-authentication
assessment and are then dynamically mapped to the session role that combines established network, device, identity, and session policy
settings. Granular resource authorization policies further ensure exact compliance to security restrictions.
development, or software deployment/maintenance. This facilitates the easy deployment and maintenance of secure remote access, as
well as secure extranets and intranets. When users log in to the SA Series SSL VPN Appliances, they pass through a pre-authentication
assessment and are then dynamically mapped to the session role that combines established network, device, identity, and session policy
settings. Granular resource authorization policies further ensure exact compliance to security restrictions.