Citrix Access Gateway is a universal SSL VPN appliance that provides a secure, always-on, single point-of-access to all applications and protocols. Access Gateway is deployed in an organisation’s DMZ, securing all traffic with standards-based SSL.

Supports all applications and protocols — Gives users access to any application in its native form — whether client-server or web-based. Additionally, the Access Gateway supports UDP protocol based applications, such as real-time voice traffic (IP soft-phones). Administrators can provide access to all needed IT resources without the need for custom development, or the need to maintain both SSL and IPSEC VPN infrastructures.

Rapid client deployment — URL distributed client allows end users to automatically download the Secure Access client. Additionally, users always receive the latest version of the Secure Access Client software when they connect. This alleviates the burden of installing, maintaining and supporting software on the client device, and allows organisations to easily and cost-effectively extend remote access to more users.

Desk-like access — Automatically reconnects disconnected users to the gateway when network connection is restored. This allows users to quickly and seamlessly reconnect to network resources and keep working, improving productivity and reducing frustration.

Always-on access — Automatically reconnects a lost connection when network connectivity is restored, allowing disconnected users to seamlessly reconnect to network resources without a keystroke or mouse click.

Integrated End-Point Security — Provides a combination of pre-login and continuous, real-time scanning of the end-point device, ensuring that end-point devices are safe to connect to the network.

Secure gateway replacement — The Access Gateway appliance supports the functionality of the Presentation Server secure gateway, allowing access from any SSL enabled ICA client. In addition, Single Sign-on to web interface is provided.

Presentation Server users can replace the secure gateway with the Access Gateway, increasing security, and extending access.

Industry standard security — Information is kept private and protected using standards-based SSL/TLS encryption. Users are authenticated using standards such as LDAP, RADIUS, 2 factor authentication tokens and client and server certificates.

Drag and drop administration — Configuration is simplified with a powerful drag-and-drop interface to define access controls and endpoint analysis, and system monitoring tools provide an instant view of system activity.

Policy based Access — Administrators can define Access Control Lists (ACLs) and define which network users and groups can access specific back-end resources.


Advanced Access Control features and benefits

Advanced Access Control, an option to the Access Gateway, adds the following key features and benefits:

Action Control — Provides a fine level of control over applications, files, web content, e-mail attachments, printing, and caching; all based on user role, device, location, and connectivity policies.

Adaptive User Access — Dynamically adjusts access by re-factoring the user interface, filtering applications and information, and enabling secure and reliable mobility. This ensures the most secure access and optimal performance and experience for each access scenario.

Access Navigator — Provides access through a browser-based single point of access for all available IT resources and services delivered as an intranet or extranet solution.

Browser Only Access — Allows users to access network file shares, Web email and internal Web sites from devices that are locked down and do not permit the downloading of any software.

Mobile Device Awareness — Intelligently and automatically optimises the delivery and display of IT resources on small devices such as PDAs, allowing mobile users to easily access internal resources such as email, file shares and documents.

Portal Integration — Configure any user interface, such as Microsoft SharePoint or IBM WebSphere, as the default home page for users or groups. Gives organisations the ability to securely and cost-effectively extend remote access by leveraging existing investments.

Advanced Presentation Server integration — Endpoint analysis and awareness of client’s location may be used to control which published applications are available to the user. Extends SmartAccess to provide control of capabilities within a Presentation Server session, including defining policies to control local client drive mapping, clipboard operations, and local printer mapping.

Common Management Platform — Advanced Access Control uses the Citrix Access Suite unified management framework containing client and server configuration, licensing, monitoring, and reporting tools for administrative simplicity, business visibility, and corporate security. Administrators can observe, monitor and measure access infrastructure resources holistically, for informed decision-making.