HOB RD VPN 2.1
Central Server, Data and Applications On Demand - Flexible, Secure, Cost-Effective
Functionalities of HOB RD VPN 2.1
User authentication with HOB RD VPN can take place using the following methods:
For the verification of user certificates, the Online Certificate Status Protocol (OCSP) is supported.
HOB has integrated an HOB-developed Security Manager for creating certificates.
Authentication with one-time-passwords is supported. All manufacturers supporting RADIUS-protocol can be used.
For true single sign-on (SSO), HOB recommends the use of Kerberos. HOB RD VPN supports Kerberos SSO.
For authentication, various LDAP-directories can be integrated. HOB supports different manufacturers, e.g.:
For the user settings, different directories can be used simultaneously, supporting, e.g.:
Due to multi-tenancy, various domains can be implemented. There are no further restrictions concerning the number of simultaneously usable domains.
Remote Desktop Functionalities
HOBLink JWT is an HOB-developed remote desktop client, allowing for communication with Microsoft Windows Remote Desktop Services. The Java RDP client is platform-independent (Java Remote Desktop).
For accessing virtual Windows desktops using HOB RD VPN, the HOB VDI Agent is required. This VDI Agent is installed on every single-user operating system (SUOS), in other words, Windows XP, Windows Vista or Windows 7, and is operating as a software service. The VDI Agent knows the current state in the SUOS.
With HOB Desktop-on-Demand, it is possible to access physical or virtual Windows workstations. One superb feature of HOB Desktop-on-Demand: Workstations can be automatically booted due to Wake-on-LAN (WOL).
For the Wake-on-LAN functionality, HOB provides a software-based Wake-on-LAN relay. It can be installed in the specific network segment on which the workstations to be woken up are found.
For the start-up of the virtualized SUOS, the HOB Virtual WOL Agent is used. This software service is also available as Linux software.
With HOB VNC-Bridge you can access configured VNC server targets. To make this possible, HOBLink JWT is used as a web-optimized RDP client.
HOB also provides a load balancing component for HOBLink JWT. As an alternative, the Microsoft Session Broker can be applied.
Virus scan with Remote Desktop Protocol
When using HOBLink JWT and a configured drive connection, it is possible to run a virus scan on transmitted data. For this, HOB RD VPN offers an ICAP interface. The advantage: Data will already be scanned in the DMZ, even before they can reach the internal network.
HOB RD VPN offers another implemented functionality, the RDP Accelerator. This feature allows for further optimizations while using HOBLink JWT.
For the verification of the endpoint device, compliance checks can be defined for various roles. The compliance check inspects, for example:
For internal network access, target filters can be configured. These target filters either allow or deny access to certain systems in the internal network.
Specific and internal IP addresses can be defined for every user. These will be assigned when the user tries to connect using HOB RD VPN. Therefore, every user can be clearly identified in the internal network.
HOB RD VPN offers an integrated cluster functionality. You can build up as many cluster nodes as needed. The cluster nodes use load balancing and synchronize themselves.
HOBLink Security Manager
Certificates for users and servers can be created using the HOBLink Security Manager. The HOBLink Security Manager allows for the development of a complete Public-Key-Infrastructure (PKI).
HOB RD VPN supports client connections over IPv6.
Anti Split Tunneling
For use on the client side, Anti Split Tunneling can be configured centrally. HOB RD VPN supplies you with the component needed for Anti Split Tunneling on the client.
HOBLink JWT is the HOB-developed Java Remote Desktop Client, that allows for communication with Microsoft Windows Remote Desktop Services. The Java RDP client is platform-independent (Java Remote Desktop).
HOB Web Server Gate
The HOB Web Server Gate makes it possible to access internal company web servers using the HTTPS protocol (SSL encrypted).
Single sign-on for web applications can be configured with Kerberos or, respectively, SPNEGO.
HOB Web File Access
Using HOB Web File Access, a user can access data over the internet, after authentication and, of course, this process is also SSL encrypted. The data accessed can be found, for example, on a server in the company network.
HOB PPP Tunnel
For unlimited network access to all resources in the central network, the user can work with the PPP Tunnel.
To configure the HOB PPP Tunnel, it is possible to do so with the help of an external, HOB-developed, L2TP gateway, Cisco or Microsoft.
Additionally, dynamical NAT can be configured to avoid conflicts concerning IP addresses.
HOB PPP Tunnel supports the following client platforms:
The US Patent Office has granted a patent for HOB PPP T1, the patent number is US 8 910 272 B2.
The Java-based SIP-client allows you to connect to the telephone system in your company's headquarters using Voice-over-IP connections.
HOBLink J-Term is the web-based and platform independent Java-terminal emulation of HOB RD VPN.
HOB WSP Universal Client
HOB has developed the HOB WebSecureProxy Universal Client that allows locally installed "Third Party Applications" safe, SSL-encrypted data access over the internet.