Академический Документы
Профессиональный Документы
Культура Документы
1-Sep-2014
Proposed Solution
Seamless
Integration
Proposed Solution
End User Authentication Workflow in SSL VPN
A generic user authentication workflow after integrating with SSL VPN
appliance is as follows:
User will provide the user name and LDAP password, LDAP is integrated
with SSL VPN device and ID Confirm.
For second authentication SSL VPN is integrated with Radius server and
Radius sever is integrated with ID Confirm (Formally known as SA
server) and ID confirm is integrated with SMS gateway through
SMSC/HTTPS.
OTP request will follow the sequence---Radius Server---ID Confirm
Sever---SMS Gateway---End User Mobile.
SSL VPN appliance validates the OTP .
After successful user authentication, SSL VPN appliance will provides
access to the network.
Active / Passive
Active / Active
No session stickiness to
manage
Limited performances
Physical or software
solution
Session stickiness to
manage
Highly scalable
Physical or software
solution
4
User
User Repository
Repository
Web
Web Browsers
Browsers
IE 9, 10, 11
Novell eDirectory
Chrome 33
Open LDAP
Data
Data Base
Base
Oracle: 10, 11g
MSSQL 2008, 2012
Web
Web servers
servers
Firefox 24 ESR
Security
Security Modules
Modules
Thales PShield 9000, NetHSM 500
Java Key Store software module
Java
Java
Oracle Java 7
Firebird 2.1
IBM Java 6
Monitoring, logs
Admin Log: Rolling File (default), NT Event,
Syslog, SNMP
256987
Why Gemalto
10
1
1
st
e
B
a
tr
ry
o
ct
e
j
on
r
se
U rs
r
a
ne ye
t
ar
G
Au
ic
t
en
h
t
on
i
at
In
12
Commercials
13
Thank You !
The Safe++ team can perform an on-site / off-site assessment of
your security set-up and help you build and drive a cost effective
and business risk driven organizational security strategy.
To set up a discussion do write in to us at info@safeplusplus.com
www.safeplusplus.com