Datasheet

ManualsBrandsJuniper ManualsNetworkingSA4000

User Self-Service

The SA 2000, SA 4000, and SA 6000 offer comprehensive password management features. These features increase end user productivity,

greatly simplify administration of large diverse user resources, and signiﬁcantly reduce the number of help desk calls.

Feature Feature Description Beneﬁt

Password Management Integration Standards-based interface for extensive integration with

password policies in directory stores (LDAP, Microsoft Active

Directory, NT, etc.)

Leverage existing servers to authenticate users; users can

manage their passwords directly through the SA interface

Web-based Single Sign-On (SSO)

Basic Authentication and NTLM

Allows users to access other applications or resources

that are protected by another access management system

without re-entering login credentials

Alleviates the need for end users to enter and maintain

multiple sets of credentials for Web-based and Microsoft

applications

Web-based SSO

Forms-based, Header

Variable-based, SAML-based

(Advanced Feature Set)

Ability to pass user name, credentials, and other customer-

dened attributes to the authentication forms of other

products and as header variables

Enhances user productivity and provides a customized

experience

Provision by Purpose

The SA 2000, SA 4000 and SA 6000 include three different access methods. These different methods are selected as part of the user’s role,

so the administrator can enable the appropriate access on a per-session basis, taking into account user, device, and network attributes in

combination with enterprise security policies.

Feature Feature Description Beneﬁt

Clientless Core Web Access Access to Web-based applications, including complex

JavaScript, XML, or Flash-based apps and Java applets that

require a socket connection, as well as standards-based

e-mail, Windows and UNIX le share, telnet/SSH hosted-

applications, Citrix and Windows Terminal Services, Terminal

Emulation, etc.

Provides the most easily accessible form of application

and resource access from a variety of end-user machines,

including handheld devices, and enables extremely granular

security control options. Completely clientless approach

using only a web browser

Secure Application Manager (SAM)

(SAMNC License)

A lightweight Java or Windows-based download enabling

access to client/server applications

Enables access to client/server applications using just a

web browser; also provides native access to terminal server

applications without the need for a pre-installed client

Network Connect (NC)

(SAMNC License)

Provides complete network-layer connectivity via an

automatically provisioned cross-platform download; Windows

Logon/GINA integration for domain single sign-on (SSO);

installer services to mitigate need for admin rights

Users need only a Web browser; Network Connect

transparently selects between two possible transport

methods, to automatically deliver the highest performance

possible for every network environment; when used with

Juniper Installer Services, no admin rights needed to install,

run, and upgrade Network Connect; optional stand-alone

installation available as well

Product Options

The SA 2000, SA 4000, and SA 6000 have several hardware and

software options that can be added to the products.

Advanced Endpoint Defense: Integrated Malware

Protection Option

Advanced Endpoint Defense: Malware Protection is an endpoint

security software module that integrates with Host Checker and

provides protection from unwanted malware, such as Trojan horses

and key loggers residing on an endpoint from which an end user

is looking to start a remote access session. The malware module is

conﬁgured as a Host Checker module and is dynamically delivered

to the end-user’s PC, with no software to pre-install. All Secure

Accessappliancesincludealicensefor25concurrentusers,free

of charge. Customers must purchase additional licenses in order to

increase this functionality to support more users.

The Advanced Endpoint Defense: Integrated Malware Protection

upgrade is available for the SA 2000, SA 4000, and SA 6000.

Secure Application Manager and Network Connect Upgrade

Option

The SAM and NC upgrade is a companion to Juniper Networks Core

Clientless access for SSL VPNs. SAM and NC provide cross-platform

support for client/server applications using SAM, as well as full

network-layer access using the adaptive dual transport methods

found in NC. The combination of SAM and NC with Core Clientless

access will provide secure access to virtually any audience, from

remote/mobile workers to partners or customers, using a wide

range of devices from any network. Although SAM and NC deliver

two different access methods, administrators can specify exactly

which access method, or combination of access methods, they

wish to assign for each user in every deployment scenario. This

allows administrators to provision by purpose, balancing security

concerns with access requirements. Dynamic access controls

enable the access to change as user, endpoint, and network criteria

change.

The SAMNC upgrade is available for the SA 2000, SA 4000,

and SA 6000.