The Secure Access Solution from ISONA enables employees and external service providers to securely access terminal servers, servers, web servers, and other resources within the corporate network or the cloud.
Typical use cases include remote work (home office), mobile employees such as sales and service teams, as well as external IT administrators from system integrators.
In addition, the Secure Access Solution is ideal for automation and remote maintenance applications.
It provides simple and secure access to devices, controllers, servers, machines, and plant visualizations.
The Secure Access Solution is available in four product variants:
All components of the Secure Access Solution are centrally managed via the ISONA Secure Access Manager (SAM), a virtual appliance (see image below).
The SAM functions as a VPN gateway, authentication server, and PKI server, and is deployed behind the customer firewall as part of a two-tiered IT security system.
In addition, the Secure Access Manager serves as a comprehensive management tool for the three main components of the Secure Access Solution.
Thanks to easy setup and user-friendly operation, IT support efforts are reduced to a minimum
The Secure Access Manager (SAM) is the central IT security component of the overall system.
It serves as a VPN gateway, authentication server, certificate server (PKI), authorization system, and central management server for the Secure Access components.
The Secure Access Manager is a virtual appliance that runs on most virtualization platforms (Microsoft Hyper-V, VMware, VirtualBox, Proxmox, Linux KVM, etc.) and is typically installed either on-premises at the customer site or in the cloud.
The ISONA Secure Access Stick (SAS) is a key component of the ISONA Secure Access Solution.
The Secure Access Stick enables secure remote access from any Windows system to VDI, terminal, and web servers, as well as controllers, machines, and more within the corporate network. No installation is required on the host system, and no traces are left behind after use, as all applications run in an isolated environment.
All the software needed by the user to establish a secure application-layer VPN and access the existing IT infrastructure is pre-installed on the stick.
Combined with a password, it provides highly secure two-factor authentication and is therefore immune to keylogger and virus attacks. This eliminates the risks commonly associated with traditional VPN clients, where intercepted passwords can give cybercriminals unauthorized access to servers and other resources.
The ISONA Secure Boot Stick provides users with secure VPN access to desktops, Microsoft terminal servers, VMware environments, or web applications — all within an isolated and protected environment.
For home office workstations or bring-your-own-device (BYOD) scenarios, the Secure Boot Stick ensures a clear separation between professional and personal PC use. This creates a particularly secure home office and mobile working environment for your team.
The Secure Access Client (SAC) is the USB stick-free version of the Secure Access Stick (SAS), offering the same comprehensive functionality.
It enables secure access from Windows® PCs, even in environments where the use of USB sticks is prohibited.
After authentication, all software required to establish a secure application-layer VPN and access the IT infrastructure is automatically and instantly loaded onto the host PC from the Secure Access Manager (SAM).
Execution takes place within an isolated sandbox environment, ensuring maximum security.
For secure two-factor authentication, users can choose between an OTP token (key fob) or an OTP app (e.g., Google Authenticator).
Configuration and management of the SAC are handled centrally via the Secure Access Manager (SAM), ensuring simple and effective administration.
The Secure Access VPN (SAV) is the ideal solution for users working on devices running operating systems such as iOS, macOS, Android, Linux, and other non-Windows® platforms — including tablets and notebooks.
The SAV is compatible with all devices that support an OpenVPN client.
To ensure IT security on these devices, the Secure Access Manager (SAM) allows precise control over the VPN tunnel by permitting only the required ports and protocols.
Secure authentication is ensured through two-factor authentication (2FA) using a one-time password (OTP).
The 2FA options are the same as with the Secure Access Client — either via an OTP token (key fob) or an OTP app such as Google Authenticator.
Central configuration and management of the SAV are conveniently handled via the Secure Access Manager (SAM), ensuring an efficient and secure IT infrastructure.
Sant‘ Ambrogio-Ring 13a
55276 Oppenheim
Tel: 06133-509098-95
Germany
Copyright © 2008 – 2024 | ISONA GmbH – All rights reserved
