top03
nav_blue

Solutions: VPN Authentication

Problem

VPNs are a powerful way to extend the functions of the corporate network to employees at home, on the road and to business partners and customers. But how do you really know who is accessing your network through your VPN?

Most VPNs manage access through passwords and user names. Unfortunately, passwords are secure only if strict guidelines are followed. This is difficult to ensure with employees, and close to impossible with customers and business partners.

How can you prevent a customer or business partner from choosing a password that is easily guessed, or prevent them from compromising the password by writing it on a yellow sticky note?

Solution

The Raak USB Smart Tokens and Smart Cards provide strong, two-factor authentication. This tells you who is accessing your corporate network, and prevents access by unauthorized users. The RaakSign Client Software supports all major VPN solutions including CheckPoint, Cisco, Microsoft and other CryptoAPI and PKCS11 capable solutions.

Benefits

  • Support for major VPN vendors: Raak uses TLS authentication supported by all major IPSEC and SSL vendors, including Cisco, Checkpoint and Microsoft.
  • No Additional Server Software: Unlike proprietary token technologies, TLS is supported directly by the VPN server itself, eliminating the cost and complexity of supporting another server application or appliance.
  • Two factor authentication: A user needs both the physical Smart Card or USB Smart Token and the Smart Card PIN code in order to authenticate. This protects against misuse even if the card is lost or stolen.
  • Portability: Raak Smart Cards and Tokens enable use of many devices in other locations - their digital certificate and cryptographic data travel with them.

How it works:

Microsoft: For Microsoft, choose any Smart Card or USB Smart Token. You will need Windows 2000 or Windows 2003 Domain server with the Windows Enterprise CA installed, and you will have to load certificates into the Smart Card and Token from this CA.

VPN Vendors: For other VPN vendors, including Cisco and Checkpoint, if you are running a CA, or use a third party CA, choose a Raak Smart Card or USB Smart Token.

Product Links

Learn more about RaakSign Client Software

Raak Smart Cards

Raak USB Smart Token
 
bt