Products
Solutions
Partners
Support


Pulse Connect Secure
Connect Secure is the most flexible and trusted mobile VPN available.
Key Features
Layer 3 SSL VPN
Description

  • Dual-transport (SSL + Encapsulating Security Payload) full Layer 3 VPN connectivity with granular access control.
  • ‘Always ON VPN’ & ‘VPN Only Access’ modes for Compliance.

Application VPN
Description

  • Client/server proxy application that tunnels traffic from specific applications to specific destinations (available for Windows devices only).
  • ‘On Demand VPN’ and ‘Per App VPN’, for Seamless & Secure end user experience.

Layer 7 Web single sign-on (SSO) via SAML
Description

  • Allows end users to authenticate to the network through a Layer 3 tunnel, while simultaneously enjoying SSO to Web applications accessed through their browser via SAML SSO support.

Optimized end-user experience
Description

  • Smooth roaming from remote access to local LAN access (Pulse Policy Secure).
  • SSO, via cloud secure feature, remote and onsite (via integration wit Policy Secure and available in Enterprise Edition of Secure Access Suites.

Endpoint integrity and assessment
Description

  • Assess and remediate end user devices prior to authentication with easy policy definition. Available on Windows, Mac OS X, Apple iOS, Android, and Windows Mobile 6.5 (capabilities vary by platform). Available pre-installed with Microsoft Windows 8.1 and RT.

Split tunneling options
Description

  • Full range of split tunneling options are configurable.
  • Includes enable and disable functionality with overriding route capability and route monitoring.
  • Pulse AppConnect enables IT to integrate per-application SSL VPN connectivity for maximum data security and user transparency.

Flexible launch options (standalone client, browser-based launch)
Description

  • Users can easily launch SSL VPN via their Web browser, or directly from their desktop.
  • Auto Connect-allows devices to automatically connect to VPN, either at the time when the machine starts or user logs on.
  • VPN on demand-leverages OS capabilities for auto triggering VPN, seamlessly in the background, when an approved application needs corporate access.

Supports Pulse Cloud Secure Solution
Description

  • Blend cloud and datacenter access into a seamless user experience for next generation workers.
  • Ability to add compliance rules for hybrid DC access.

Preconfiguration options (Windows and Mac only)
Description

  • Administrators can preconfigure a Pulse Secure deployment with a list of gateways for end users to choose from.

Authentication options
Description

  • Administrators can deploy Pulse Secure for remote user authentication using a wide array of authentication mechanisms, including hardware token, smart card, soft token, one-time passwords and certificate authentication.

RDP/Telnet/SSH sessions using HTML5
Description

  • 100% clientless access using HTML5 browsers.

VMware Horizon and Citrix XenApp/XenDesktop
Description

  • Supports VMware Horizon View 6.0.1, 6.1 & 6.2; 7.0 for VMware Horizon View, Citrix Xen 7.6, StoreFront 2.6 & 3.0.

Granular SSL Cipher Configuration
Description

  • Enables the administrator to select specific ciphers over those pre-configured for highly secure compliance.

End-to-End Layered Security
Host Checker
Description

  • Endpoint devices can be checked prior to and during a remote access session to verify an acceptable device security posture requiring installed/running endpoint security applications (antivirus, personal firewall, etc.), as well as check for IT-required Operating System versions, patch level, browser type, and many other requirements.
  • Custom-built checks for specialized customer requirements are also supported.
  • Noncompliant endpoints can be quarantined, denied access, or granted access, depending on administrator defined policies.
  • Whenever possible, Host Checker automatically remediates noncompliant endpoints by updating software applications that do not comply to corporate security policies.

Benefits


  • Ensures that endpoint devices meet corporate security policy requirements before being granted network access. 
  • Remediates devices and quarantines users, when necessary.
  • Can ensure that no potentially sensitive data is left behind on the endpoint device.

Trusted Network Connect (TNC) support in Host Checker
Description

  • Allows interoperability with diverse endpoint security solutions from antivirus to patch management to compliance management solutions.

Benefits

 
  • Enables customers to leverage existing investments in endpoint security solutions from third-party vendors.

Always-On VPN
Description

  • Ensure all traffic from endpoints is sent over the tunnel which is set up automatically when an Internet connected is detected.

Benefits
 
  • Enables organizations to enforce security, compliance and visibility on all traffic from endpoints even when they are not on-prem.

Ease of Administration
Mobile Device Management (MDM) integration (Available with AirWatch and MobileIron)
Description

  • Enables consolidated reporting and dashboards for simplified management
  • Leverages MDM attributes for more intelligent and centralized policy creation
  • Facilitates transparent “no touch” MDM-based deployment of Pulse Clients to iOS and Android devices

Benefits

  • Extend MDM investments to gain comprehensive endpoint visibility and support additional mobile use cases.

Secure Browser
Description

  • A mobile browser for securely accessing corporate web applications, without the need of installing / managing / launching a VPN client.

Benefits
 
  • IT does not have to worry about deploying and managing VPN on mobile devices. End user does not have to worry about launching VPN. Seamless end user experience where a user launches browser and accesses his resources, as he would normally expect to.

Secure Access for SAP Applications
Description

  • Embeds Pulse Secure Per-App VPN SDK into SAP’s Fiori mobile applications.

Benefits
 

Integration with strong authentication and identity and access management (IAM) platforms
Description

  • Ability to support SecurID, Security Assertion Markup Language (SAML) including standards-based SAML v2.0 support, and public key infrastructure (PKI)/digital certificates.

Benefits
 
  • Leverages existing corporate authentication methods to simplify administration.

Bridge Certification Authority (BCA) support
Description

  • Supports federated PKI deployments with client certificate authentication. Bridge CA is a PKI extension (as specified in RFC 5280) to cross-certify client certificates that are issued by different trust anchors (Root CAs).
  • Also, enables customers to configure policy extensions in the admin UI, to be enforced during certificate validation.

Benefits
 
  • Enables customers who use advanced PKI deployments to deploy the Pulse Secure Appliances to perform strict standards-compliant certificate validation—before allowing data and applications to be shared between organizations and users.

Multiple hostname support
Description

  • Ability to host different virtual extranet websites from a single appliance.

Benefits

  • Saves the cost of incremental servers.
  • Eases management overhead.
  • Provides a transparent user experience with differentiated entry URLs.

Intuitive Dashboard Design
Description

  • View and control enterprise access to the data center and cloud from one console. (Reference Diagram 1)

Benefits
 
  • Quick access to dynamic information and reports.
  • Customizable layouts via drag and drop functionality.

Customizable user interface
Description

  • Creation of completely customized sign-on pages.

Benefits

 
  • Provides an individualized look for specified roles, streamlining the user experience.

Pulse One Compatible
Description

  • With Pulse One, configuring, updating, and monitoring PSA or MAG Series Appliances under a centralized management console with the capabilities of a single device/cluster or across a global cluster deployment.

Benefits
 
  • Enables companies to conveniently manage, configure, and maintain PSA or MAG Series Appliances along with Pulse Workspace from one central location.

Pulse Application Launcher (PAL)
Description

  • Enhanced support for non-JAVA based browsers.

Benefits

 
  • Support for latest generation browsers (Apple, Microsoft, Google, Firefox, etc) that do not support Java and Active X.

Access Privilege Management
Dynamic role mapping with custom expressions
Description

  • Combines network, device, and session attributes to determine which types of access are allowed.
  • A dynamic combination of attributes on a per-session basis can be used to make the role mapping decision.

Benefits

 
  • Enables the administrator to provision by purpose for each unique session.

SSL VPN federation with NAC
Description

  • Seamlessly provision SSL VPN user sessions into NAC sessions upon login.
  • Since session data is shared between the Pulse Secure Appliances for SSL VPN and NAC, users need to authenticate only one time to get access in these types of environments.

Benefits

 
  • Provides users, whether remote or local, seamless access with a single login to corporate resources that are protected by access control policies.
  • Simplifies the end user experience.

Support for RSA Authentication Manager
Description

  • RSA Authentications Manager 8.1 enables Risk Based Authentication.

Benefits

 
  • Offer another authentication layer option via email account.

Support for Google Authenticator
Description

  • Enables multi-factor authentication using smartphones

Benefits

 
  • Leverage ubiquitous smart phones to roll out a cost-effective and self-serve two-factor authentication mechanism, where one time passcodes are generated by a mobile app

Multiple sessions per user
Description

  • Allows remote users to launch multiple remote access sessions.

Benefits

 
  • Enables remote users to have multiple authenticated sessions open at the same time, such as when accessing VPN from a laptop and from a smartphone simultaneously.

User record synchronization
Description

  • Supports synchronization of user records such as user bookmarks across different Pulse Secure Appliances.

Benefits

 
  • Ensures a consistent experience for users who often travel from one region to another and therefore need to connect to different Pulse Secure Appliances running Pulse Connect Secure.

Mobile-friendly SSL VPN login pages
Description

  • Provides predefined HTML pages that are customized for mobile devices, including Apple iPhone and iPad, Google Android, and Nokia Symbian devices.

Benefits
 
  • Provides mobile device users with a simplified and enhanced user experience and webpages customized for their device types.

Flexible Single Sign-On (SSO)
SAML single sign-on for cloud and Web applications access
Description

  • SAML 2.0-based SSO to a variety of Web applications, including many of today’s most popular Software as a Service (SaaS) applications such as salesforce.com and Google Apps.
  • Includes SSO functionality, even when connecting via a Pulse Connect Secure Layer 3 VPN tunnel, which is unique in the industry.
  • Pulse Connect Secure supports deployments as both an SAML Identity Provider (IdP) and as a SAML Service Provider (SP).

Benefits
 
  • Single sign-on to a user’s Web and cloud-based applications, simplifying the user’s connectivity experience.

Kerberos Constrained Delegation
Description

  • Support for Kerberos Constrained Delegation protocol.
  • When a user logs into Pulse Connect Secure with a credential that cannot be proxied through to the backend server, the gateway will retrieve a Kerberos ticket on behalf of the user from the Active Directory infrastructure.
  • The ticket will be cached on Pulse Connect Secure throughout the session.
  • When the user accesses Kerberos-protected applications, the Appliance will use the cached Kerberos credentials to log the user into the application without prompting for a password.

Benefits
 
  • Eliminates the need for companies to manage static passwords resulting in reduced administration time and costs.

Kerberos SSO and NT LAN Manager (NTLMv2) support
Description

  • Pulse Connect Secure will automatically authenticate remote users via Kerberos or NTLMv2 using user credentials

Benefits

 
  • Simplifies the user experience by eliminating users entering credentials multiple times to access different applications.

Password management integration
Description

  • Standards-based interface for extensive integration with password policies in directory stores (LDAP, AD, and others).

Benefits
 
  • Leverages existing servers to authenticate users.
  • Users can manage their passwords directly through the Pulse Connect Secure interface.

Web-based SSO basic authentication and NTLM
Description

  • Allows users to access other applications or resources that are protected by another access management system without reentering login credentials.

Benefits
 
  • Alleviates the need for users to enter and maintain multiple sets of credentials for web-based and Microsoft applications.

Web-based SSO forms-based, header variable-based, SAML-based
Description

  • Ability to pass user name, credentials, and other customer defined attributes to the authentication forms of other products and as header variables.

Benefits
 
  • Enhances user productivity and provides a customized experience.

Provision by Purpose
Pulse Secure Client
Description

  • Single, integrated, remote access client that can also provide LAN access control, and dynamic VPN features to remote users.

Benefits

 
  • Pulse Client replaces the need to deploy and maintain multiple, separate clients for different functionalities such as VPN and LAN access control.
  • The end user simply “clicks and connects.”

Clientless core Web access
Description

  • Secure access to many different types of web-based applications, including many of today’s most common Web applications such as Outlook Web Access, SharePoint, and many others.
  • Remote Desktop Protocol (RDP) access in Pulse Connect Secure can be delivered over HTML5.

Benefits
 
  • Provides the most easily accessible form of application and resource access from a variety of end user devices with extremely granular security control options.
  • Completely clientless approach using only a web browser.

IPsec/IKEv2 support for mobile devices
Description

  • Allows remote users to connect from any mobile device that supports Internet Key Exchange (IKEv2) VPN connectivity.
  • Administrator can enable strict certificate or username/password authentication for access via IPsec/IKEv2.

Benefits
 
  • Full L3 VPN support for new devices that support IKEv2 but for which a Pulse Secure client is not yet available.

Virtual Desktop Infrastructure (VDI) support
Description

  • Allows interoperability with VMware View Manager to enable administrators to deploy virtual desktops with Pulse Connect Secure.

Benefits

 
  • Provides remote users seamless access to their virtual desktops hosted on VMware servers.
  • Provides dynamic delivery of the VMware View client, including dynamic client fallback options, to allow users to easily connect to their virtual desktops.

ActiveSync Proxy
Description

  • Provides secure access connectivity (strong encryption + certificate authentication) from mobile devices (such as iOS or Android devices) to the Exchange Server via proxy, with no client software installation.
  • Enables up to 5,000 simultaneous sessions.

Benefits

 
  • Enables customers to allow a large number of users (including employees, contractors, and partners) to access corporate resources through mobile phones via ActiveSync.

Secure Application Manager (SAM)
Description

  • A lightweight Java or Windows-based download enabling access to client/server applications.

Benefits

 
  • Enables access to client/server applications using just a Web browser.
  • Also provides native access to terminal server applications without the need for a preinstalled client.

We'd love to chat with you

We've got so much to tell you about how our products can help you enable Secure Access for the next generation of your business, but we're also good listeners.