RSA Security AG-600 User Manual
RSA ClearTrust Ready Implementation Guide
For Portal Servers and Web-Based Applications
Last Modified August 30, 2004
1. Partner Information
Partner Name AEP Systems Ltd.
Web Site www.aepsystems.com
Product Name AEP SureWare A-Gate
Version & Platform AG-600 V3.0.2
Product Description AEP SureWare A-Gate, a suite of SSL VPN hardware appliances,
provides a high functionality, low-cost SSL VPN solution for small and
medium enterprises (SMEs) that want to extend enterprise
applications to employees, business partners and customers.
AEP SureWare A-Gate provides a full-featured solution that meets all
the remote access needs of SMEs, from access to Web-enabled or
Windows Terminal Services applications to full access to client-server
applications. Now all remote access users - mobile employees, "road
warriors", teleworkers, occasional travelers and business partners can have secure and authenticated access to internal applications and
resources.
Product Category Remote access, Virtual Private Networking
RSA ClearTrust
Web Server
AEP SureWare A-Gate
1. User logs in to AEP SureWare A-Gate
2. SureWare A-Gate authenticates user against LDAP repository
3. SureWare A-Gate forwards credentials to requested web server
4. Requested web server passes credentials to ClearTrust server
5. ClearTrust server verifies credentials against LDAP repository
6. ClearTrust server authorises request
7. Web server sends requested page to SureWare A-Gate
8. SureWare A-Gate delivers requested page to user
Laptop
Active Directory
Page: 1
2. Contact Information
Sales contact Support Contact
Email sales@aepsystems.com support@aepsystems.com
Phone
Web www.aepsystems.com www.aepsystems.com
US/Toll Free: 800.383.7716
US/California: 650.326.6748
US/Boston: 617.790.5825
Ireland: (+353 1) 204 1300
UK: (+44) 1442 458 600
US/Toll Free: 866.443.0370
EMEA: (+353 1) 204 1300
3. Solution Summary
Feature Details
Use UserID for SSO Yes
Use UserID for Personalization Yes
Recognize Authentication Type No
API-level Authorization Support
No
(RuntimeAPI)
User Management
Yes
(AdminAPI)
Via Shared User Repository (LDAP)
Page: 2
4. Integration Overview
AEP SureWare A-Gate provides Single-Sign-On via Authentication Forwarding Rules. These rules list the
servers protected by RSA ClearTrust and ensure that when a user attempts to access a resource on one
of these servers, their Basic credentials are automatically forwarded with the request.
5. Product Requirements
Hardware requirements
Component Name: SureWare A-Gate AG-600
Firmware level 3.0.2.5-ct1
Page: 3
6. Product Configuration
To enable SSO perform the following steps:
• Add all ClearTrust protected servers to the ‘Anywhere Web Servers’ list via the A-Gate web
administration interface.
• Set the HTTPS default policy to Allow.
• Configure the A-Gate to use the same LDAP repository as the RSA ClearTrust environment.
Active Directory User Management can be performed either by the RSA ClearTrust AdminGUI or
directly in the LDAP directory server.
• Enable LDAP Authentication.
• Create Authentication Forwards.
1. Add ClearTrust protected servers to ‘Anywhere Web Servers’ list via the web administration
interface,
these configured servers.
https://<machine-fqdn>/_admin. A-Gate users can only access resources which reside on
• Navigate to ‘Remote Access > Anywhere > Anywhere Web Servers’.
• Enter the server name and click ‘Add’.
• The new server will appear in the list at top of the page, where it can be tested for
connectivity or deleted. N.B. All ClearTrust protected servers must be added to this
list.
Page: 4
Loading...