Dell SonicWALL E-Class Secure Remote Access (SRA) Overview Stuart Lisk Sr. Product Manager Matthew Dieckman Product Line Manager

Dell SonicWALL E-Class Secure Remote Access (SRA) Overview

Stuart Lisk

Sr. Product Manager

Matthew Dieckman

Product Line Manager

2 Dell Software GroupConfidential

E-Class SRA Overview

Mobile VPN delivers granular access control to mission critical resources from any end-point including desktops, laptops, smartphones and tablets for all the popular operating systems including Windows, MAC, Android, and iOS for the enterprise using leading SSL VPN technology.


Drivers and Trends

Business Drivers• Reduction in operating costs

• Focus on TCO

• Mobilization of the workforce

• The proliferation of BYOD policies

• Business expanding globally

• Compliance

• Outsourcing growth

• Gaining competitive advantage

Technology Drivers• Growth in real-time applications

• SaaS /Web 2.0

• Virtualization of services

• Data Center consolidation

• Ubiquity of broadband

• Proliferation of mobile/tablet devices

• Rise in IP telephony

• Endpoint interrogation

The Communications Landscape Continues to Evolve


Secure Remote Access Drivers

Remote Access Give all employees remote access solution that is easy to use and deploy.

During a business disruption, demand for remote access could spike to include the majority of your workforce.

Disaster Recovery

The Bring Your Own Device (BYOD) movement has been fueled by the dramatic growth and adoption of mobile platforms.

Mobility and BYOD

Extranet AccessOpen access to partners to increase collaboration, yet do it in such a way that access control and security is not compromised.

Rising transportation costs and environmental concerns are leading an increase in flexibility regarding working from home.

Working ‘Green’

Many organizations treat users on the wireless network as remote users due to concerns over who has wireless access.

Securing Wireless Networks


E-Class Secure Remote Access Appliances

Dell SonicWALL E-Class SRA EX7000

The Dell SonicWALL Family of E-Class Secure Remote Access Appliances


Dell SonicWALL E-Class SRA Virtual Appliance



Easy

to U

se. Easy

to C

ontr

ol.

Dell SonicWALL Aventail Remote Access

End Point Control™ (EPC™): detects the identity and security state of the end device

Unified Policy™: is the enforcement engine, controlling device access so users only access applications they are authorized forSmart Access™ and Smart Tunneling™: are the transport mechanisms, making it easy and secure for users to access all network resources

Detect

Protect

Connect

SSL VPNs Can….


Secure Remote Access Functions

Business Partner from any Browser

Customer/Supplier Behind a Firewall

Extranet Access

Internal Users

Internal Access

Dell SonicWALL SSL VPN SolutionTraveling

Employee

Day Extender

Employee at a Kiosk

Employee Using a Wireless Hotspot

Remote Access

Employee Smart Phones/ Tablets

Protect applications with granular access control based on user identity and device integrity

Detect what is running on the end point device

Connect users securely and easily to applications on any device

Connect

Web Apps

Client/Server Apps

File Shares

Databases

VoIP

VDI Infrastructure

ApplicationsDirectories

Corporate Perimeter

LDAP

AD

RADIUS

Best of Breed Secure Remote Access that ensures the appropriate level of access for any remote access use case

LDAP

Detect Protect Connect


Detect: End Point ControlDell SonicWALL E-Class SRA End Point Control interrogates managed and non-IT-managed devices prior to connecting to identify the device and determine the overall trust level

WorkPlace Access (Clientless Web

Access)

Connect Access (Client-Installed

Access)

Traditional Client/Server Applications

File Shares

VoIP Applications

Corporate Network

For Device Identity

Mapped DirectoryWindows Domain

MembershipDevice

Watermark/ Certificate

Any Resident FileWindows, Mac,

Linux Device IDMobile Device ID

EPC Device InterrogationAnd Device

Integrity Anti-VirusRegistry KeyWindows O/S LevelPersonal FirewallAnti-Spyware

Interrogate by Device Profile

IT ManagedNon-Managed

WindowsWindows

MobileMacintoshLinuxiOS/Android

With Data Security

Cache ControlSecure Desktop


Protect: Unified PolicyDell SonicWALL E-Class SRA object-based Unified Policy enables application control via easy to setup and manage access rules, covering all devices types and users.

Define Trust Level for

Users

Your Company

Employee Community

Define Trust Level for Devices

Groups: Sales, Marketing, Executive

Partner Community

Groups: Partners

Allow

Quarantine

Deny

Allow

Quarantine

Deny

• Create allow, deny and quarantine rules easily that govern access for all users and devices based on device identity and device integrity

• Just one rule set enforces access to all resources across all access methods based on who the user is and the trust level for the device

Application:

User Trust:

Device Trust:

Sales, Executive

Define What Applications

Users/Devices can Access

Access Control List

CRM App

All in Empl. Community

OWA

Sales, Partners

Order Entry

Ad

mis

sio

n

Con

trol


Protect: User Trust

• Directory Browsing

• Dynamic Groups

• Dual/Stacked Authentication

• Forms-Based Authentication

• Virtual Keyboard

• Password Management

• One-Time Password


Protect: Access Control

• Single unified policy interface to manage all access across all types of applications and access methods

• Granular application access control based on who the user is and the trust level for the device

– Block attachments in Webmail– Leverage user variables to provide direct

access to user specific file shares and remote desktops

• Bi-directional access control for added security with remote helpdesk and VoIP


Protect: Virtual Assist

How it Works: 1. Technician launches lightweight client to monitor queue or invite a specific customer via

email2. Customer logs on to portal and requests help or accepts the email invitation3. Meanwhile, a lightweight client is pushed seamlessly through the browser to the Customer4. Technician sees Customer in queue and requests access to computer5. Customer gives permission and remote support session begins

Remote EmployeesTechnicia

n

Virtual Assist is a remote support tool that enables a technician to assume control of a customer’s PC or laptop for the purpose of providing remote technical assistance

Supported OS types includes Windows, Mac and Linux

SonicWALL Virtual Assist provides organizations with an easy to use remote support tool


Connect: Access from Managed and Unmanaged Devices

Welcome to the myCompany Remote Access Portal

https://myhomepage.mycompany.com

WorkPlace Access: Access to web-based and client/server applications from virtually any device


Connect: WorkPlace Web Portal

The Workplace Web Portal provides transparent access for web applications, client/server applications, and file shares

•Customizable Web portal

•Personal Bookmarks

•Multiple WorkPlace sites

•Smart Access

•OnDemand Tunnel

•Native Access Modules

•WorkPlace Mobile


Connect: SonicWALL E-Class SRA Connect Tunnel

Provides secure policy controlled network access from a Web deployed/delivered Windows, Macintosh or Linux client, providing a complete “in-office” experience.

•Easy provisioning•End Point Control

•Split tunneling

•Auto updating

•NAT Mode

•Unified policy

Thin Client/Server Applications


Web-based Applications

File Shares


Connect: Mobile Connect for iOS

Dell Aventail E-Class SRA Appliances

Dell SonicWALL SRA Appliances

Dell SonicWALL Next-Generation

Firewalls

Step 1: Download

Mobile Connect

Step 2:Install Mobile

Connect

Step 3: Configure SSL VPN

Connection


Connect: Mobile Connect Android

Dell SonicWALL Aventail E-Class SRA

Appliances

Dell SonicWALL SRA Appliances

Dell SonicWALL Next-Generation

Firewalls

Step 1: Download

Mobile Connect

Step 2:Install Mobile

Connect

Step 3: Configure SSL VPN

Connection

http://en.wikipedia.org/wiki/File:Google_Play_logo.png


Detect: EPC for iOS/Android Devices

EPC options for iOS•Determine jailbreak status•DeviceID (Based on the UDID of the iOS device)

•Certificate enforcement•OS version control

EPC options for Android•Determine root status•DeviceID (Based on the IMEI of the Android device)

•Certificate enforcement•OS version control•Enforcement of anti-virus


Connect: ActiveSync Support for Mobile Devices

• Mobile ActiveSync support allows access to email, calendar and contacts from a variety of mobile devices through the Dell SonicWALL Aventail SSL VPN

•Cross-platform support: iPhone, iPad, Android devices, Windows Phone 7, Symbian

•Clientless Email, Calendar and Contact access through the Dell SonicWALL Aventail SSL VPN - eliminating the need to provide direct access from remote devices to the Exchange server


Dell SonicWALL Aventail Product OverviewE-Class Virtual Appliance E-Class SRA EX6000

Target Customer

Mid-size Enterprise with up to 5,000 employees

Small –to-Midsize Enterprise with 500 to 1,000 employees

Concurrent Users

Can be licensed with a 5, 10, 25, 50, 100, 250, 500, 1,000, 2,500 or 5,000 concurrent user stackable license

Can be licensed with a 5, 10, 25, 50, 100 or 250 concurrent user stackable license

Add-On Features

• Spike License- Allows for the immediate increase of the remote user count in the event of a business disruption

• Native Access Modules- Optimized access for WTS, VMware View and Citrix applications

• Advanced EPC- Granular control with easy configuration for trusting end point devices

• Virtual Assist- Remote desktop help and support tool

• SonicWALL Aventail Advanced Reporting- robust hierarchical log analysis tool

• E-Class Support- 24x7 support for E-Class solutions


• Native Access Modules- Optimized access for WTS, VMware View and Citrix applications

• Advanced EPC- Granular control with easy configuration for trusting end point devices


• FIPS Support- License required for FIPS mode




Dell SonicWALL Aventail Product Overview E-Class SRA EX7000 E-Class SRA EX9000

Target Customer

Mid-to-Large Enterprise with over 1,000 employees

Large Enterprise with over 1,000 employees

Concurrent Users

Can be licensed with a 5, 10, 25, 50, 100, 250, 500, 1,000, 2,500 and 5,000 concurrent user stackable license

Can be licensed with a 5, 25, 50, 100, 250, 500, 1,000, 2,500 and 5,000, 7,500, 10,000, 15,000, 20,000 concurrent user stackable license

Add-On Features







• FIPS Support- License required for FIPS mode




Spike Licensing

• Allows the purchase of temporary capacity increases to be used in the case of an emergency

– EX Virtual Appliance: ‘Spike’ to 5,000 concurrent users– EX6000: ‘Spike’ to 250 concurrent users– EX7000: ‘Spike’ to 5,000 concurrent users– EX9000: ‘Spike’ to 20,000 concurrent users

• Spike licenses available for increasing from any user count, including 5-user Lab appliances

• Spike licenses available in 10-Day and 30-Day increments

– Supports start and stop, allowing for flexibility in how the license is applied


One Gateway to Meet your Secure Remote Access Needs

Dell SonicWallE-Class SRA

Secure Remote Access

Dell SonicWALL E-Class SRA is the only SSL VPN that provides one solution with centralized management for all devices, applications, and users, delivering manageability, security, and productivity

Thin Client/Server Applications


Web-based Applications

File Shares

Wireless LANs

IT-Managed Devices

Internal Users

SonicWALL Aventail® Connect™A Web-delivered client, for complete network access and unmatched ease-of-use

SonicWALL Aventail® WorkPlace™Clientless browser access for Web apps, client/server apps and file shares

Service Edition:

Application-to-Application

Smartphone/ Tablet Users

Kiosk Users

Business Partners

Teleworkers

Managed

Devic

es

Unm

anaged

Devic

es

iOS, Android smartphones and tablets

Dell SonicWALL Mobile Connect™

Thank you

Stuart Lisk

Sr. Product Manager

Matthew Dieckman

Product Line Manager

Documents

Dell SonicWALL E-Class Secure Remote Access (SRA) Overview Stuart Lisk Sr. Product Manager Matthew Dieckman Product Line Manager