For network administrators, few tasks are more important than securing roaming users, and few are more difficult to perform. The latest release of Aventail’s EX-1500 SSL VPN, built on Version 8.0 of the Aventail ASAP (Anywhere Secure Access Policy) platform, addresses both of these issues with a new object-oriented model for applying security policies. Version 8.0 also breaks new ground in end point control, allowing administrators to define a user’s access not only by user name and password but also by the user’s method of connection.
These improvements come in the form of three key features. The new Unified Policy engine greatly reduces the time and effort used to create an access control policy for users. With my test unit, I created a single rule set for a group of users and simply added resources and access methods on the same screen. This may seem trivial, but most other SSL VPN appliances would require a separate rule for each resource. A second new feature, Smart Access, provides a transparent method for detecting client connection requirements automatically. Smart Access will download any helper applets the remote client might need in the background, greatly reducing user intervention and administrative overhead.
With Aventail End Point Control 2.0, administrators can define a level of trust depending on the remote client system, not just on the user name and password. For example, a user might be allowed to access all resources when logging in from a remote office PC, but limited to only e-mail when logging in from a public Internet terminal. You may trust the user, but you no longer have to trust the client. That’s the sort of granular security enterprises need.
Cost: Starts at $9,495 for as many as 25 concurrent users
Ship date: Now shipping