PulseSecure_Datasheet_ConnectSecure_v9

DATASHEET

Pulse Connect Secure

Product Overview

Employees are more mobile than ever before, and they carry multiple company issued and personal (BYOD) computing devices. They want fast, easy yet secure mobile and remote access that empowers them to do their jobs effectively. One of the key Pulse Secure services, Pulse Connect Secure provides cost effective, secure, authenticated access via SSL VPN for remote and mobile users from any web-enabled device to corporate resources— anytime, anywhere.

Product Description

Enterprises and service providers have the difficult challenge of providing location- and device-independent network connectivity that is secure and capable of controlling resource access for authorized users. Breaches and threats continue to spiral out of control, and increasing numbers of employees and users want to use their own personal mobile and computing devices to access enterprise data and applications, making this challenge even more difficult. Pulse Secure Connect Secure provides secure, authenticated access for remote and mobile users from any web-enabled device to corporate resources—anytime, anywhere. Pulse Connect Secure is the most widely deployed SSL VPN for organizations of any size, across every major industry.

Pulse Connect Secure includes Pulse Secure Clients and the AppConnect SDK. Pulse Clients are dynamic, multiservice network client for mobile and personal computing devices. Pulse Clients are simply deployed, enabling users to quickly “click and connect” from any device, anywhere. Pulse Secure AppConnect SDK delivers perapplication SSL VPN connectivity for iOS and Android clients, enabling IT to create an even more transparent and secure mobile app experience for their users.

For more details on Pulse Secure, please visit http://www.77cn.com.cn.

Architecture and Key Components

Pulse Connect Secure is available on a hardware-based (Pulse PSA or MAG Series) or as a virtual appliance as noted below.

PSA300 Pulse Secure Appliance: Fixed configuration, compact appliance ideal for small and mid-size businesses, supporting up to 200 SSL VPN concurrent users. PSA300 is ideal for desktop deployments. PSA3000 Pulse Secure Appliance: Fixed configuration, rack-mount appliance ideal for small and mid-size businesses, supporting up to 200 SSL VPN concurrent users. PSA5000 Pulse Secure Appliance: Fixed configuration appliance ideal for scalable mid-size businesses, supporting up to 2,500 SSL VPN concurrent users. PSA7000 Pulse Secure Appliance: Fixed configuration appliance ideal for meeting the highest scalability needs of large businesses, supporting up to 25,000 SSL VPN concurrent users. MAG2600 Pulse Secure Appliance: Fixed configuration, compact appliance ideal for small and mid-size businesses, supporting up to 100 SSL VPN concurrent users. MAG4610 Pulse Secure Appliance: Fixed configuration appliance ideal for mid-size and large businesses, supporting up to 1,000 SSL VPN concurrent users.

MAG6610 Pulse Secure Appliance: Chassis-based appliance ideal for scalable large businesses, supporting up to 20,000 SSL VPN concurrent users; it requires at least one service module (maximum of two) to be ordered and installed (MAG-SM160 or MAG-SM360). MAG6611 Pulse Secure Appliance: Chassis-based appliance ideal for meeting the highest scalability needs of large businesses, supporting up to 40,000 SSL VPN concurrent users; it requires at least one service module (maximum of four) to be ordered and installed (MAG-SM160 or MAG-SM360). Virtual Appliance: VMWare and KVM virtual appliances for scalable elastic deployment of SSL VPN services.

For more details on PSA and MAG Series Appliance, including the specifications and ordering information of each model, please refer to the Pulse PSA or MAG Series Appliance datasheets.

Features and Benefits

Pulse Secure Clients

Pulse Clients securely connect users to networks. Wrapped in an extremely user-friendly package, Pulse Client dynamically enables the

appropriate network and security services on users’ endpoints. Users are not distracted from their work activities to figure out what network they are on or what service to enable. With Pulse Secure, the connection just works, helping to deliver the productivity promised by mobile devices. Pulse Client delivers dynamic access control, seamlessly switching between remote (SSL VPN) and local (NAC) access control services on Microsoft Windows devices. Pulse Client also enables comprehensive endpoint assessment for mobile and desktop computing devices, and quarantine and remediation, if necessary.

Table 1: Key Features of Pulse Connect Secure

End-to-End Layered Security

Pulse Connect Secure provides complete end-to-end layered security, including endpoint client, device, data, and server layered security controls.

Table 2: End-to-End Layered Security Features and Benefits

Ease of Administration

In addition to enterprise-class security benefits, Pulse Connect Secure has a wealth of features that make it easy for the administrator to deploy and manage.

Table 3: Ease of Administration Features and Benefits

Rich Access Privilege Management Capabilities

Pulse Connect Secure provides dynamic access management capabilities. When users log into Pulse Connect Secure, they pass through a

pre-authentication assessment, and are then dynamically mapped to the session role that combines established network, device, identity, and session policy settings. Users have access only to those resources that are deemed necessary for that session, according to administrator-defined policies.

Table 4: Access Privilege Management Features and Benefits

Flexible Single Sign-On (SSO) Capabilities

Pulse Connect Secure offers comprehensive single sign-on (SSO) features. These features increase end user productivity, greatly simplify administration of large diverse user resources, and significantly reduce the number of help desk calls.

Table 5: Flexible Single SSO Features and Benefits

Provision by Purpose

Pulse Connect Secure includes different access methods. These different methods are selected as part of the user’s role, so the administrator can enable the appropriate access on a per-session basis, taking into account user, device, and network attributes in combination with enterprise security policies.

Table 6: Provisioning Features and Benefits

Product Options

Pulse Connect Secure currently includes several license options for enablement on the PSA or MAG Series Appliances.

that amount, simply adding another 100 user license to the system will now allow for up to 200 concurrent users sessions. Key features enabled by this license include:

The combination of core clientless access, SAM, Pulse Client/

User License (Connect Secure - ‘CONSEC’)

Pulse Connect Secure (CONSEC) licenses are per concurrent session licenses. (Please see the Ordering Information section below for licensing details.)

CONSEC licenses provide SSL VPN functionality that allows users to access the network. They fully meet the needs of both basic and complex deployments with diverse audiences and use cases, and they require little or no client software, server changes, DMZ

buildouts, or software agent deployments. For administrative ease of managing license counts, each user license enables as many

concurrent sessions as specified in the license and they are additive. For example, if a 100 user license was originally purchased and the concurrent user session count grows over the next year to exceed

Network Connect provides secure access to virtually any audience, from remote and mobile workers to partners or customers, using a wide range of devices from any network.

Provision -by- purpose goes beyond role-based access controls

and allows administrators to properly, accurately, and dynamically balance security concerns with access requirements.

Advanced PKI support includes the ability to import multiple root

and intermediate certificate authorities (CAs), Online Certificate Status Protocol (OCSP), and multiple server certificates.

User self-service provides the ability for users to create their own

favorite bookmarks, including accessing their own workstations from a remote location, and even changing their passwords when they are set to expire.

Multiple hostname support, for example, https://employees. Meet federal and government mandates for contingencies and

http://www.77cn.com.cn, https://http://www.77cn.com.cn, and https://

http://www.77cn.com.cn/engineering, can all be made to look as though each individual user community is the only ones using the system, complete with separate logon pages and customized views that uniquely reflect the needs and desires of that audience.

User interfaces are customizable for users and delegated

continuity of operations (COOP) compliance

Balance risk and scalability with cost and ease of deployment

administrative roles.

Advanced endpoint security controls such as Host Checker, and,

cache cleaner, ensure that users are dynamically provisioned to access systems and resources only to the degree that their remote systems are compliant with the organization’s security policies, after which remnant data is scrubbed from the user’s device so that nothing is left behind.

For the MAG Series Appliances, the ICE licenses are available in two forms: full ICE (which allows bursting to the full capacity of the MAG Series Appliances); and a 25% burst license (which allows bursting of up to 25% of the installed license count on any given MAG Series Appliances). For example, if the customer has a MAG6610 with a 1,000 user license, the 25% burst license option will support an additional 250 users during an unplanned event. Likewise, for the Pulse PSA Series Appliances, only the full ICE licenses are available.

Premier Java RDP Applet (Optional)

With the Premier Java RDP Applet option, users can remotely access centralized Windows applications independent of the client platform (Mac OS, Linux, Windows, and so on) through Java-based technology. As a platform independent solution, the Premier Java RDP Applet lets you use the entire range of Windows applications running on the Windows Terminal Server, regardless of how the client computer is equipped. By centrally installing and managing all

Windows applications, you can significantly reduce your total cost of ownership. The Premier Java RDP Applet is an OEM of the HOBlink JWT (Java Windows Terminal) product created by HOB Inc., a leading European software company specializing in Java programming.

High Availability Clustering Capability (No Additional License Required)

Customers have the ability to build clusters without buying any additional licenses. The clustering method can be explained in two simple steps:

1. Simply place an equal number of user (CONSEC) licenses on each PSA or MAG Series Appliance.2. When the PSA or MAG Series Appliances are joined together to form a cluster, all of the user licenses add up so that the cluster can now support all of the licensed users. For example, building a cluster of 1,000 users is done by bringing together two boxes with 500 user licenses in each of the two units.If either box fails, the remaining box inherits the full 1,000 user licenses. Clustering supports stateful peering and failover across LAN connection, so in the unlikely event that one unit fails, system configurations (such as authentication server, authorization

groups, and bookmarks), user profile settings (such as user defined bookmarks and cookies), and user sessions are preserved. Failover is seamless, so there is no interruption to user/enterprise productivity, no need for users to log in again, and no downtime.

Please note that WAN clustering is not supported on the PSA or MAG Series. Multisite clustering is supported, however, provided the sites are on a campus network with LAN-like connectivity.

ICE (In Case of Emergency) License (Optional)

SSL VPNs can help keep organizations and businesses functioning by connecting people even during the most unpredictable

circumstances—hurricanes, terrorist attacks, transportation strikes, pandemics, or virus outbreaks—the result of which could mean the quarantine or isolation of entire regions or groups of people for an extended period of time. With the right balance of risk and cost, the ICE license delivers a timely solution for addressing a dramatic peak in demand for remote access to ensure business continuity whenever a disastrous event strikes. ICE provides licenses for additional users on a PSA or MAG Series Appliance running Pulse Connect Secure for a limited time.

With ICE licenses, businesses can do the following:

Maintain productivity by enabling ubiquitous access to

applications and information for employees from anywhere, at any time, and on any device

Sustain partnerships with around-the-clock, real-time access to

applications and services while knowing resources are secured and protected

PSA Series Ordering Information

PSA Series Licensing Options

PSA Series Accessories

**

*With Pulse Connect Secure 8.2 & Pulse Policy Secure 5.3

**Note these accessories pertain to the Pulse PSA7000 Appliance.

***Total number of licenses cannot exceed the maximum supported per PSA Series Appliance.

MAG Series Ordering Information

MAG Series Licensing Options

MAG Series Accessories

Pulse Secure Services and Support

Pulse Secure is the leader in performance-enabling services that are designed to accelerate, extend, and optimize your high-performance network. Our services allow you to maximize operational efficiency while reducing costs and minimizing risk, achieving a faster time to value for your network. Pulse Secure ensures operational

excellence by optimizing the network to maintain required levels of performance, reliability, and availability.

About Pulse Secure, LLC

Pulse Secure, LLC is a leading provider of access and mobile security solutions to both enterprises and service providers. Enterprises

from every vertical and of all sizes utilize the company’s Pulse virtual private network (VPN), network access control and mobile security products to enable end user mobility securely and seamlessly in their organizations. Pulse Secure’s mission is to enable open, integrated enterprise system solutions that empower business productivity through seamless mobility.

Corporate and Sales HeadquartersPulse Secure LLC

2700 Zanker Rd. Suite 200 San Jose, CA 95134 http://www.77cn.com.cn

Copyright 2015 Pulse Secure, LLC. All rights reserved. Pulse Secure and the Pulse Secure logo are registered

trademarks or Pulse Secure, LLC. All trademarks, service marks, registered marks, or registered service marks are the property of their respective owners. Pulse Secure assumes no responsibility for any inaccuracies in this document. Pulse Secure reserves the right to change, modify, transfer, or otherwise revise this publication without notice.

Pulse Connect Secure Datasheet 112415

本文来源：https://www.bwwdw.com/article/q23m.html