Juniper Networks NetScreen-SA 1000, NetScreen-SA 3000, and NetScreen-SA 5000 lines of SSL VPNs are offered with either Baseline or Advanced Feature Sets. As business users are increasingly demanding ubiquitous access from any device and any network, enterprise security organizations must ensure that the appropriate level of information access is granted, given the combination of corporate policies and a variety of user, device, network and session attributes.

The NetScreen Secure Access Baseline and Advanced feature sets address these needs and enable companies to create the precise solution that best meets their needs, from small-to-mid-sized employee remote access deployments to the largest global enterprise extranet. The Baseline products provide the functionality that an enterprise would need to deploy secure remote access, as well as a basic customer/partner extranet or intranet.

The Advanced products feature additional sophisticated capabilities that will meet the needs of more complex deployments with diverse audiences and use cases. Both products provide remote access, extranet, and intranet capabilities with little to no need for client software, server changes, DMZ build-outs, or software agent deployments.


Baseline Product Feature Set

• Enable differentiated access with access privilege management
  * Dynamic authentication policies
  * Role definition and mapping rules
  * Role- and resource-based authorization rules
  * Application event auditing and logging
   
• Flexible policy model
  * Hybrid role/resource based policy model
  * Re-usable, inheritable, "copy-paste-edit" policy model
  * Integrates with existing directories for authentication and authorization
  * Centralised security infrastructure
   
• Comprehensive, end-to-end layered security
  * Strong authentication/robust AAA
  * Endpoint security: Host Checker/Cache Cleaner, Data, and Server security

Advanced Product Feature Set (In addition to Baseline features)

• Combine attributes using Boolean expressions, for flexible, dynamic, "per-session" policies
   
• Advanced role definition and mapping rules combine attributes using Boolean expressions
   
• Advanced resource authorization policies combine attributes using Boolean expressions
   
• User self-service
  * Password Management Integration
  * Web Single Sign-On
  * Multiple hostname support
  * Customizable User Interface
  * Role-based delegation
  * Flexible role definition
  * Granular per task delegation