Layer-8 Technology
Control of the user-based security policy
The “Layer-8 Technology” from gateProtect treats the user identity as the 8th layer
of the OSI model.
All gateProtect “Next Generation Firewall Appliances” offer security and productivity at
all levels and across all services – from layer 2 to layer 8 with identity-based policies.
Future-proof with high security
Most modern firewall systems support proxy-based user authentication. This means that only those services which work with proxies such as HTTP or FTP can be issued to specific users.
The gateProtect firewall has rule-based Extended User Authentication which allows any number of services to be assigned to one user or a group of users. These services can be provided with all the known additional options such as proxies or web filters.
If a user logs on to the firewall from a computer, all the assigned services for the computer in question are enabled.
gateProtect offers you two ways of logging onto the firewall:
- Web browser/UA Client: logon is via an HTTPS connection.
- Single sign-on: Kerberos automatically passes the log on to the domain to the firewall.
The extended user-authentication of gateProtect captivates through
- The release of as many as desired services for a person
- Configuration of the services for groups
- Configuration of the services for active directory groups
- Approval of services also in the intranet
- Guaranteed future, because of future services are also configurable.
- Single sign-on by Kerberos during registration at the windows domain
- Browser-Login for operating system independence
|
