Home / Products / OneGate

OneGate

World’s most complete platform for secure access management – All in one server

MobilityGuard OneGate is the only access management solution that integrated the functionality for clientless and client based access in one server. Built in and delivered as default, MobilityGuard RDP-gateway reduces heavily the IT department workload and administration costs for access management.

The OneGate solution not only protects e-business Applications. It also enables organizations to offer extremely scalable and flexible access for chosen application for employees, business partners, customers or any type of user.MobilityGuard OneGate supports any type of application delivery, usually without requiring any change of the application.Due to this unique and dynamic central solution, the time of deployment and maintenance is decreased to a minimum.

Web based systems including Intranet, Outlook Web Access etc.

Virtual Desktop based systems such as Microsoft Remote Desktops Services and Citrix

Client – Server applications such as full email clients, business applications etc.

Characteristics

True SSL-VPN communication

The MobilityGuard OneGate supports true SSL-VPN communication including:

Full SSL/TLS support with military standard encryption.

Secure session handling with no direct access to the applications from the device.

Full Cache Control and no foot prints are left after usage. Built in RDP-Gateway based on HTML5 technology.

Strong authentication

MobilityGuard’s OneGate includes built-in, almost more than 15 different authentication methods which guarantee a flexible solution which manages any user and access situation.

The appliance provides two-factor, strong authentication solutions using SMS Text. By using SMS Text for OTP (One Time Passwords) no additional authentication solution is needed.

Dynamic single sign-on & Personalized application launcher

Based on your organization’s security policy you can dynamically enable or disable users’ single sign-on to your applications.

MobilityGuard OneGate even supports single sign-on extended to external organizations through Identity Federation with SAML 2.0 support.

Using differentiated access control, which can be set up within a few minutes, you can personalize and provision each user’s application launcher.

Easy deployment and maintenance

The MobilityGuard OneGate is a turn-key solution delivered as hardware or virtual appliance which can be installed in a few hours.

Advanced load balancing and cluster functionality is included by default.

By a single point of administration GUI, MobilityGuard control center, configuration and maintenance is made easy in a central point.

Technical specifications

Web browser supportInternet explorer, Chrome, Safari, Firefox and Opera
Communication

Multiple two factor authentication methods:
Web token, SMS token, E-mail token, Kerberos, RADIUS, Enigma code matrix, local digital certificates, TOTP/HOTP authenticator (OATH), U2F, FIDO2, Yubikey OTP, WizePass, electronic IDs.

Multiple authentication back ends:
LDAP, RADIUS, 802.1X and PEAP/MSCHAPv2, Kerberos, REST Web Service, Ticket resolvers.

Encryption
  • Supports multiple encryption algorithms, encryption key lengths including accepted military standards
  • TLS 1.1, 1.2 and 1.3
Access control optionsSecurity policy defined by user/group, source IP & network, trust, authentication method, encryption grade, URL path, date & time.
Single sign-on (SSO)

Central dynamic single sign-on based on the security criteria’s, user/group, authentication method, encryption grade, network trust and date/time. Multiple single sign-on integration standards:

  • HTTP authentication (RFC2617), NTLM, web form, Kerberos and HTTP X-Headers.
  • Identity federation – Identity provider & service provider supporting SAML 2.0, OpenID Connect and OAuth2, with built in support for cloud services such as Office 365, Google Suite and salesforce.
  • Secure cookie based SSO (persistent login)
User administrationSupports LDAP directory services like Microsoft Active Directory, NetIQ eDirectory and OpenLDAP Virtual hosts/multiple directory service support – Many directories services can be used at the same time. Support for built in local user directory.
Application administrationSingle point of administration from control center No changes are required on target application “Three-Click” application setup wizard Resource profiles for easy setup of standardized applications like, Microsoft Outlook web access, SharePoint, file shares, Remote desktop services (RDP)
High availability and load balancing
  • Built in high availability module including redundancy and load balancing
  • No limitations exist for scaling up the solution when needed
Application support
  • Web based applications and web portals
  • TCP and UDP based client-server applications
  • Built in web SSH client
  • Built in web Microsoft Remote desktop services (RDP) client
  • Built in web file share browser
Other featuresSyslog, personalized application launcher, message center (SMS and email), user self services, digital signing, password policies, virtual accounts, guest account support, RADIUS-based federation (eduroam), etc.
Form FactorHardware appliance series – MOG 4000/6000
Dimensions (width x length x height): 430 mm x 450 mm x 44 mm
Virtual appliance platforms – VMWare/Hyper-V/XEN server

Appliances

 

MOG 4000MOG 6000Virtual
Max concurrent users100050003000
Form factor1U1U
Dimensions (width x length x height)430mm x 450mm x 44mm 430mm x 450mm x 44mm
Weight8 Kg8 Kg
LAN ports44
HypervisorVMWare, Hyper-V, Xen