The past two years have seen Secure Socket Layer (SSL) VPN connections rapidly replacing IP Security (IPsec) and Point-to-Point Tunneling Protocol (PPTP) VPN connections. The ability to provide granular access rights to various user groups is challenging, and doing so via IPSec or PPTP VPN connections is virtually impossible. An SSL VPN allows IT to grant network and application access at a very granular level, define group policies that can be applied to groups of users with the same requirements, and define and enforce endpoint security policies. This research note covers the following aspects of SSL VPN technology:
- When it's appropriate, including deployment scenarios.
- Defining policies and access management.
- Secure remote access from any device with a browser.
While an SSL VPN will not replace IPSec or PPTP VPNs for applications such as site-to-site connectivity, it is the most appropriate solution for the vast majority of business users that require secure remote connectivity.