Celestix Federated VA3400 Virtual Appliance
Bridge the gap between AD and Oice 365 with Celestix Federated Solution
The Celestix Federated VA Series is a hardened and secure virtual appliance platform that is optimized for secure Windows deployment.
The Celestix Federated VA Series offers the following functionality:
- Simplified wizard-driven identity management configuration for ADFS and Office 365.
- Streamlined management interface.
- Integrated NLB configuration for high availability deployments.
Celestix Federated Series
Identity management helps organizations establish policies and practices to conirm that the people who access information resources are legitimate users. Identity federation creates trust relationships that can exchange information to authenticate users. The framework lets a single user identity access a variety of resources.
Celestix Federated Series is a plug-and-play, on-premises solution that enables single sign-on (SSO) and access management for cloud applications. Active Directory Federation Services (AD FS) is the identity management tool to achieve seamless integration for cloud resources with Active Directory (AD), including Microsoft Azure, Oice 365, and other software as a service (SaaS) products.
The purpose-built Celestix Federated Series makes moving infrastructure to the cloud a better value proposition. The cloud can ofer eicient resources and simpliied operations for IT departments. That simplicity translates to cost savings and a better user experience.
Federated Identity Management
The Celestix Federated Solution integrates federated identity with on-premises AD. Federation allows IT and users to streamline credentials that access resources inside the network and in the cloud. Storing credentials internally increases security and maintains organizational control.
Single Sign-On (SSO)
Users can securely and reliably access Oice 365 and other SaaS apps using their existing AD credentials from anywhere, on any domain-joined device. Users get a seamless single sign-on experience for cloud business solutions, including Exchange Server, SharePoint, Lync and other web apps.
Installation wizards reduce the need for IT to sort through complex technical requirements to deploy AD FS. Preconigured options speed the setup process. AD FS and Directory Synchronization (DirSync) service coniguration for Oice 365 can be completed in 15 minutes.
Seamless Resource Access
Cloud resources include platform as a service (PaaS) and software as a service (SaaS). Combining Azure platform options for infrastructure with Oice 365 productivity software ofers a scalable, accessible solution to use cloud technology to support business goals for organizations large and small. But without identity management, end users and IT departments spend a lot of time managing credentials. Single sign-on and synchronization are key factors for the seamless access to resources that improves designed for the network.
Access to sensitive resources can require stronger authentication. Using multifactor authentication (MFA) to require a second form of validation at login increases security. By integrating MFA into an SSO deployment, impact on user experience is reduced. To make the second authentication step easier, AD FS can incorporate that second factor from several options, so each user can choose the most convenient method.
Reporting, Monitoring, and Alerting
Infrastructure maintenance requires evaluation and oversight. Metrics are essential for IT controls, and are useful to measure progress towards single sign-on objectives. The Celestix Federated series adds several features to help manage identity federation. Predeined reports provide tools for auditing and compliance requirements. The dashboard provides centralized monitoring for service status, synchronization, and login activity. The alert system can warn administrators when services or synchronization fail.
Infrastructure Resilience and Flexibility
Celestix Federated Appliances can be conigured in highly available, load balanced clusters to provide authentication service redundancy. The addition of multiple appliances supports scaleout architecture when infrastructure demands increase.
- Federated user identities stored in on-premises AD increase security
- Single sign-on improves eiciency and ease of use
- Wizards reduce complexity to deploy identity federation
- Seamless access to resources crosses organizational boundaries
- Multifactor authentication strengthens access security
- Infrastructure oversight with reporting, monitoring, and alerting
- High availability adds resilience and scalability ofers lexibility
The Celestix Federated appliance can be deployed in a variety of configurations. To provide a frame of reference, the following diagrams show three options.
A Series Minimal Recommended Infrastructure Deployment
A Series Infrastructure Recommendation with Proxy and Default Data Store
A Series Infrastructure Recommendation for Proxy and External Data Store
|E Series Model||VA3400||VA6400|
|CPU||2.4 GHz or greater with 4 Cores||2.8 GHz or greater with 4 Cores|
|Number of Processors||4 Cores||4 Cores|
|Memory||8 GB||16 GB|
|Available Disk Space||50 GB or greater||50 GB or greater|
|Network Card||1-2 virtual adapters|
Specs and Requirements
Hypervisor: Any SVVP certified hypervisor (VMware (ESX and ESXi), Microsoft Hypervisor, KVM, or CITRIX XenServer virtual platforms.)
SVVP reference: https://support.microsoft.com/en-us/kb/957006
- Operating System: Windows Server 2012 R2
- Google Chrome 40.0 or higher
- Microsoft Internet Explorer 10.0 or higher
- Mozilla Firefox 7.0 or higher
- Safari 5.0 or higher
Demo Video: Celestix Edge A and VA Series
Download the Celestix Federated A and VA Series Datasheet (.PDF)