Blue Coat RA8100 Series - Content Control
RA8100 Series
The RA8100 Series of rack-mountable proxy appliances provides large-sized sites with the power to extend remote access to employees, partners, and customers while delivering on demand endpoint security and information protection features.
Download RA8100 Series Brochures and Datasheets
- Blue Coat Overview Brochure 0.76MB
Typically deployed within the DMZ, the RA8100 platform provides remote employees and third parties granular access to corporate applications. Extensive support for unmanaged devices, such as home desktops, partner PCs, and Internet kiosks, by never requiring local admin rights or VPN client software and through a rich set of information protection features to block information leakage at the endpoint, such as browser cache encryption and complete session cleanup.
Object-based policy management enables intuitive and flexible rules that control access to resources based on user, target resource, security profile of the device, time of day, and whether the user's endpoint is corporate-managed or unmanaged. The RA8100 features LAN-speeds and support automatic failover without requiring the user to re-authenticate.
On Demand Remote Access- Extensive application support – provides out-of-the-box support for web and non-web TCP and UDP applications without ever requiring VPN client software (see Application Support Guidelines)
- Comprehensive web application support – provides uninterrupted access to both simple and advanced and feature-rich web applications (XML, ActiveX, AJAX, Java, etc.) without relying on error-prone URL rewriting
- Single access mode for all users – provides access to all supported applications via patent-pending Blue Coat Connector, eliminating the headache of managing multiple access modes for different users
- Support for locked down environments – never requires local admin rights on end user devices for accessing web and non-web applications, extending access to both managed and unmanaged endpoints without exception
- In office user experience – provides IPSec-like user experience (e.g. launch native applications from desktop)
- Application-layer access across all applications – controls access by applications for all supported applications and never requires unrestricted network-layer connectivity
- No changes to desktop – leaves desktop as it found it when user session is over (no system alternations or modifications) and no software left behind
- Integrated with SSL VPN – provides endpoint security for managed and unmanaged devices seamlessly integrated with remote access deployment and management
- Pre-authentication and continuous spyware scan – leverages patent-pending AMP (Adaptive malware Protection) technology to provide a pre-login scan for framegrabbers and keyloggers and continues to scan for duration of user session
- Automatic spyware suppression – identifies and temporarily suppresses processes and programs identified as potential threats, such as framegrabbers and keyloggers, for the duration of user session without any permanent system changes
- On demand host integrity checks – checks a variety of conditions (such as personal firewall settings, antivirus software updates and OS patches and service packs) on the endpoint to determine the security posture of the device
- Customizable host checking – provides tool for defining custom host checks (such as registry settings, processes running/not running and the existence of certain files)
- Application blacklists and whitelists – provides application white lists and blacklists to control which applications, through checksum validation, are allowed to be accessed / not accessed by the end user during the remote access session
- Application-specific access – allows administrators to limit which applications can reach specific resources to block unauthorized programs from contacting the internal assets
- Configurable split tunneling – blocks or enforces split tunneling
- Intuitive object-based policy manager – controls user access to targeted resources through easy-to-administer, object-based access rules
- Granular user and access control – defines access by user, target resource, source/location of user, time of day, and security profile of connecting device
- Policy wizard – creates access policies in minutes with user-friendly wizard
- Extensive authentication support – integrates with leading authentication schemes, such as Microsoft Active Directory, LDAP/LDAPS, RADIUS, RSA SecurID®, and TACACS+
- Custom groups – supports custom groups using existing directory groups or user attributes for targeted access to specific resources
- Flexible tiered access controls – allows minimum security thresholds, such as requisite OS patches, AV updates or personal firewalls settings, when accessing specific applications and other resources
- Activity logs with flexible search tool – logs all activity by user and application and provides intuitive search tool for locating specific records
- System dashboard – provides overview of system health (e.g. CPU usage and disk utilization), concurrent users logged on and overall system status
- Customizable login page – allows IT administrators to customize the user login page to integrate with corporate colors, branding and messaging
- Integrated with SSL VPN – provides information protection for managed and unmanaged devices seamlessly integrated with remote access deployment and management
- Browser security – encrypts all information stored by the browser, including cache, temp files and cookies, and clears all session information at the end of SSL VPN session using DoD 5220.22-spec file deletion
- Information usage controls – controls what users can do with the information accessed and downloaded by web applications, such as blocking or allowing file save, print, save to clipboard, cut-and-paste, and screen print operations
- Framegrabber and keylogger protection – scans for and suppresses keyloggers and framegrabbers to prevent spyware from stealing personal and corporate information
- Flexible user configuration – support 500, 1000, 2500 or 5000 concurrent users
- High availability – transparent, automatic failover for uninterrupted connectivity
- load balancing – supports external load balancers to satisfy performance-critical applications
- High performance architecture – easily supports LAN speeds
