[Last Call] Learn how to a build a cloud-first strategyRegister Now


Juniper MAG Alternate Solutions? (Access Portal, SSL VPN)

Posted on 2014-08-28
Medium Priority
Last Modified: 2016-10-25
Hi there,

I'm looking for a solution to replace Juniper MAg's secure access portal functionality, for clients that don't have Citrix XenApp/Desktop. Here's my requirements:

-Consolidate remote access
-For ease of remote users remembering a single URL (single access portal with SSO)
-For security to not expose insecure services (you can put all external apps besides SMTP behind the access portal, requiring users to login first to access them)
-Seamlessly integrate with backend app web portals and the protocols associated with them.
-HTML5 support for integrating with web applications
-IPSec or SSL VPN tunnels. MAGs are great for this, and even offer a lightweight  “SAM” VPN client that can tunnel individual applications.
-Integration with plain old RDS/RDP if Citrix not in client environment
-RDP tunneling with NLA (Network level Auth)
-File Access to Windows Shares, both for Windows and Mobile clients
-Integration with Citrix Storefront/XenApp

Mag problems:
-Ease of use: MAG’s Citrix XenApp ActiveX plugin requires a browser AND Java plugin AND Citrix Receiver, and often one of those components fails.
-MAG’s don’t support RDP 6.1’s NLA (network Level Authentication), forcing clients to disable it on servers and introduce possible Man-in-the-middle RDP attacks.

Some Solutions I've looked at:
-Citrix NetScaler- really limited functionality if the client doesnt have Citrix
-Plain old SSL VPN via the firewall- no single access portal for end users
-Windows RemoteApp- most clients not fans
-Okta- Most clients nto fans of cloud based services

Thanks for your recommendations!
Question by:Graycon
1 Comment
LVL 18

Accepted Solution

Sanga Collins earned 2000 total points
ID: 40291458
Sonicwall sra series of VPN appliances. I have the SRA-1600 and all my users love it. It can do everything you have in your checklist.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is about my experience upgrading my consulting machine to Windows 10 Version 1709 (The Fall 2017 Creator Update)
In this article I will be showing you how to subnet the easiest way possible for IPv4 (Internet Protocol version 4). This article does not cover IPv6. Keep in mind that subnetting requires lots of practice and time.
This video Micro Tutorial shows how to password-protect PDF files with free software. Many software products can do this, such as Adobe Acrobat (but not Adobe Reader), Nuance PaperPort, and Nuance Power PDF, but they are not free products. This vide…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

825 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question