Username:  
 
Password:  
    
Forgot Password? Username?   |   Register
register
Banner

 

 

By leveraging the Secure Sockets Layer (SSL) encryption capability built into all standard browsers, the gateway establishes secure sessions to users connecting via all types of devices, dynamically granting or denying access to specific applications and data based on authentication factors including:

 

Who are you? By prompting for user name and password, the appliance enforces access control through a wide variety of authentication mechanisms including Active Directory®, RADIUS, NTLM, Kerberos Constrained Delegation and more.

 

Who are you really? Able to enforce two-factor authentication for customers who require the strongest access control including smartcards, tokens, one-time passwords, SMS one-time
passwords and more.

 

Where are you? Provides more granular access control for organizations with security policies that prohibit particularly sensitive applications or data to be accessed when users connect through locations such as airports, Internet cafes or homes.

 

What type of device are you using? Access to individual applications and network resources can also be based on the type of device attempting to connect, making it possible to provide more liberal access for variety of trusted devices and situations and more restricted access for less trusted devices and situations. For example, managed corporate laptops that you have secured and trust may be able to access applications and data that are not made available to users of smart phones, unmanaged PCs or Internet kiosks.

 

What state is your device? By monitoring the state of the device – including factors such as patch level, anti-virus brand and version, firewall status, anti-spyware presence and more – access to each network resource can be further restricted. For example, a device that does not meet organization guidelines for latest antivirus signature may not be allowed to upload files or may only be given access to view webmail until the AV signature is updated to one that meets specifications.

 

 

As users move among locations and connect through multiple devices, the gateway establishes profiles of user/location/device status for each session. By matching each access profile with your security policies, the appliance provides highly granular control over information access.

 

Secure gateway makes it easy to achieve the goal of single sign-on

For organizations that have concluded that single sign-on access to all their applications was too complicated, expensive or unlikely to handle the complexities of their environments, this IAG appliance brings good news! By establishing a secure front end to all application and network resources, the IAG gateway implements single sign-on capabilities for any application or resource based on organizational policy – even file shares and legacy applications that would otherwise be unable to incorporate today’s authentication methods.

 

Portcullis Systems delivers flexibility unavailable in other SSL VPN products

Flexibility is critical in today’s enterprise because every organization has different needs. Where other SSL VPN solutions implement a one-size-fits-all approach, IAG is built to be able to adapt to the needs of your organization and its technology. The IAG gateway is even able to add new functionality to applications without touching their underlying code. For example, if a company mandates that all applications must implement two-factor authentication and display a logout button on every screen, retrofitting legacy applications might seem impossible. Yet these and other complex problems are very straightforward to solve with IAG.


You can also set the gateway to add, edit, or delete functionality within applications. Options can be presented to users based on their location, type of device and endpoint status for each session. The gateway can even gray-out selected menu options within an existing application to disable specific functions whenever session profiles indicate that users are on untrusted networks or are using insufficiently secure endpoints.

 

Deep Inspection drops bad traffic; Application Optimizers allow only known good-traffic

The IAG Secure Access Gateway employs both negative and positive logic to implement the strongest possible security. First the appliance performs highly granular Deep Inspection to detect and discard unexpected and malicious traffic. Then Application Optimizers are available to ensure that only known-good traffic is forwarded to servers running popular products such as Microsoft Outlook Web Access, SharePoint® and Dynamics® – and many others including IBM WebSphere®, Lotus Notes®, SAP®, Oracle® and more. You can even create your own Application Optimizers to secure traffic to virtually any applications (including custom and legacy applications) to allow only those data patterns that are known to be suitable for the application.

 

Portcullis Systems Appliance Management (PSAM) provides advanced technology to keep your investment operating at maximum efficiency

 

Portcullis Systems Appliance Management (PSAM) performs these key functions:
1. Hardware and Software Alerting – PSAM notifies your administrators as well as Portcullis Systems Support when thresholds for critical operating parameters are exceeded. Alerts regarding items such as operating temperatures, hard disk performance, hard disk remaining capacity, are sent via Syslog, SNMP and email. Alerts are also generated on hardware failures and when services stop or the
appliance experiences resource issues with memory or disk.

 

2. Patch Management – Threats continue to evolve, as well as the functionality and features of software to protect the security of your network. To provide the fastest possible update service, Portcullis Systems appliances implement a full patch management system that works with all installed Microsoft and non-Microsoft products. Each platform routinely checks if there are updates not yet applied and displays the results in patch reports and executive summaries.

 

3. Reporting – PSAM provides a robust report set that helps you assess the status of your appliance:


■ Patch Management Report keeps track of all suggested updates and shows which have and have not yet been applied to your device.


■ Network Status Report shows the network usage profile for all Portcullis Systems appliances within your environment.


■ Machine Change Report tracks all software versions and identifies any software that has been modified, often an audit requirement.


■ Executive Summary Report shows a combination of performance, alerts triggered, patch status, disk space usage and overall network health for your appliances.  Reports provide both detail and summary analysis of appliance health and performance, including real-time and historical resource utilization.

 

4. Virtual Engineer, Remote Support Access – Our virtual engineer capability enables us to dispatch technicians to your device without ever leaving our offices! With our advanced technologies, our support engineers can troubleshoot your appliances in real-time to minimize the time to resolve problems. PSAM remote support access is an important tool that helps us fulfill our goal of providing Portcullis
Systems users with the best support available.

 

5. Backup and Restore – Backup capabilities as well as robust restore capabilities are key to any appliance deployment.  PSAM backups can be scheduled to occur automatically at your convenience or on demand. Periodically saving backups to a network share ensures that you can be up and running promptly if there is ever an event that requires a restore of your machine image. Full appliance backups
and differential backups can be scheduled independently of our other configuration backup options and run without impact to your daily operations!

 

Appliance Management Reports keep you informed

Portcullis Systems Appliance Management (PSAM) generates summary reports that display and track critical parameters to simplify operation.

 

 

World-class 24 x 7 x 365 support with onsite support options worldwide!

Each Portcullis Systems solution includes always accessible helpdesk assistance plus support options that can provide onsite hardware support in as little as four hours should you experience a hardware issue. Portcullis Systems technical support is staffed by seasoned professionals with years of experience with our products and related devices they interact with in our customers’ networks. We are committed to provide you with exceptional support and use email, web and telephone to provide you with the most effective method for prompt problem resolution. We make every attempt to answer calls live. When that is not possible, we guarantee a callback within one hour. We understand that our security products are critical infrastructure and we always attempt to resolve your issues as expediently as possible.

 

Strong security built on enterprise-class hardware platforms

Reliability is an essential requirement for security appliances, which is why the Portcullis Systems appliances are built in ISO 9001:2000-certified facilities using only enterprise-class components. Every element of our platform is designed for continuous use in server room environments to assure reliability that surpasses platforms built with light-duty components rated for desktop devices.

 

There are tremendous differences in server hardware that significantly affect reliability. For example, hard drive manufacturers measure the Mean Time Before Failure, reported as the familiar MTBF ratings. At first glance, the MTBF for a server-class hard drive may look similar to the MTBF for a desktop-class drive. However, desktop drives are designed to run in a typical office environment five days a week for eight hours a day. Server-class drives are designed to run in a hot server room 24 hours a day, seven days a week, 365 days a year. Since manufacturers base their MTBF numbers on intended usage, the MTBF ratings for desktop and server-class devices are not directly comparable. Desktop-class drives are not intended for 24/7 operation. If you use a desktop disk in an environment that requires 24/7 performance, reliability will suffer greatly. In fact, manufacturers often will not honor warranty claims for drives that are not used as intended. This is why Portcullis Systems uses only true server-class components in our appliances to assure the highest level of reliability.

 

Portcullis Systems delivers outstanding appliance value

Our IAG Secure Access Gateway appliances bring together the rich security features of IAG, Tier 1, hardware, and the robust management tools of PSAM. When combined with the additional features of Winfrasoft’s X-Forwarded-For for IIS, your appliance is an outstanding value! Delivered with our world-class support capabilities for hardware and software, you have the industry’s strongest value in security appliances. Our solutions deploy quickly to provide years of strong, flexible security at a truly low Total Ownership Cost, making our appliances the right choice for your organization.

 

Datasheets & Documentation

 

The most affordable enterprise-class Portcullis Systems IAG gateway

 

 

The most affordable, high performance, redundant, enterprise-class IAG gateway

 

HP-Based Appliances

Our most affordable HP-based IAG Gateway for small to mid-sized organizations

 

 

The high performance, redundant, affordable IAG gateway on Tier 1 HP hardware

 

 

The fastest, most powerful IAG security gateway available

 

Copyright © 2010. Portcullis Systems, Inc.