+33 483 580542
- Répartiteurs de Charge Serveurs
- ›LM-2200 Load Balancer
- ›LM-2600 Load Balancer
- ›LM-3600 Load Balancer
- ›LM-5300 Load Balancer
- ›LM for UCS Load Balancer
- ›Répartiteur Virtuel de Charge Serveurs
- ›Répartiteurs de Charge Serveurs Multi-sites
- ›Grille des Produits
- Répartiteurs de Charge Serveurs pour Exchange
- Solutions
- ›Edge Security Pack
- ›Microsoft Lync 2010
- ›Microsoft Exchange 2010
- ›IPv6 Address Load Balancing
- ›MS Terminal Services
- ›E-Commerce
- ›Education
- ›Healthcare
- ›Hébergement Administré & ASP
- ›Application Development
- Vidéos/Webinars
- ›Why You Need To Load Balance Exchange 2010
- ›RDS: Expanding Past One Server
- ›High Availability for Non-Email Server Roles
- ›Load Balancing Lync in the Real World
- Resources
- ›Guide de Dimensionnement
- ›Compare KEMP Load Balancer to F5 Networks
- ›Livres Blancs
- ›Témoignages
- ›Reviews
The KEMP ESP – Edge Security Pack
KEMP has built a large and loyal install base across a range of market segments, applications and geographies. These include a large number of customers who have deployed KEMP’s LoadMaster load balancers in conjunction with Microsoft workloads. As a part of the solution for Exchange, Lync or SharePoint a key component has historically been Microsoft’s Forefront Threat Management Gateway (TMG). One key feature of TMG was that it offered customers a way to publish and protect workload servers such as Exchange Client Access Servers especially in Internet Facing deployments where a clean separation between critical infrastructure and the public internet is essential.
Now that End Of Sale for TMG has arrived*, KEMP Technologies will be extending the successful LoadMaster platform with a new security feature pack to build on existing core technologies such as the Reverse Proxy function which has enabled successful joint deployments of TMG and LoadMaster in Internet Facing Microsoft applications.
Figure 1 – Showing existing TMG and LoadMaster deployments
INTRODUCING THE LOADMASTER EDGE SECURITY PACK
The KEMP Edge Security Pack (ESP) pack is designed to deliver a complete solution using the KEMP LoadMaster line of load balancers to customers who would have previously deployed TMG to publish their Microsoft applications.
Figure 2 – Application deployments simplified by LoadMaster with the ESP
The KEMP ESP will offer the following key features:
End Point Authentication for Pre-Auth
Clients who are trying to access virtual services on the LoadMaster will have to provide Authentication information which will be used by the ESP to validate the clients right to access the service. In the event of success the client is enabled to access the service and in the event of failure the client will be blocked until valid credentials are provided.
Persistent Logging and Reporting for User Logging
When clients try to access a service this will be logged on the LoadMaster as part of the ESP. This will allow monitoring by the administrator.
Single Sign On across Virtual Services
LoadMaster is designed to handle multiple virtual services supporting unique workloads. These virtual services can be joined together into Single Sign On groups. The ESP will enable clients to only enter the authentication information for the first virtual service and then this same information will be used to access other services in the Single Sign On group. Therefore a client accessing Exchange will also be able to access SharePoint and other workloads if they are configured in a Single Sign On group.
LDAP authentication from the LoadMaster to the Active Directory
Active Directory is the standard for the Authentication Provider for Microsoft workloads. LoadMaster will support the key connection types between LoadMaster and the Active Directory.
NTLM and Basic authentication communication from a Client to the LoadMaster
LoadMaster with ESP will support key authentication types -- Basic and NTLM -- between client and the LoadMaster providing clients with an optimum authentication experience.
Large and small businesses are deploying large numbers of Internet Facing applications to support ever expanding business requirements. This rapidly growing number of servers needs to be scalable and highly reliable. Above all, the access to these servers and services needs to be secure. With the addition of the ESP, the KEMP LoadMaster will continue to deliver on customer security requirements for internet facing applications in a world without Forefront TMG, while continuing to address requirements for feature-rich and cost-effective scalability and high reliability.
The Edge Security Pack (ESP) will be available as part of the next major LoadMaster product release – scheduled for general availability in Q1 of 2013. Existing LoadMaster customers will be eligible for an upgrade at no extra cost.1
For additional information on KEMP Edge Security Pack, to stay up to speed on the latest release information or to join our ESP beta program, please sign up here.
*blogs.technet.com/b/server-cloud/archive/2012/09/12/important-changes-to-forefront-product-roadmaps.aspx
1 – The free upgrade will be available to existing KEMP customers who have a current KEMP Service and Support agreement and purchased the KEMP LoadMaster appliance(s) after 1st Dec 2011 and is extended to the following models : LM-2600, LM-3600, LM-5300. LM-2200 will not support the Edge Security Pack. LM-2200 customers who purchased after 1st Dec 2011 will be provided with an upgrade path. Contact KEMP for more details.
2 –
To support ESP a hardware upgrade will be required. The hardware upgrade will be carried out by KEMP at a KEMP designated facility and will be performed in accordance with KEMP's hardware upgrade service policy.
3 – All VLM customers will be provided with a software upgrade.