|
|
SA Series Appliances |
Juniper Networks Secure Access 2000 SSL VPN Appliance
Note: Beginning with v6.1, SAMNC and Advanced included with Base System |
#SA2000
List Price: $2,500.00 |
|
More pricing below,
click here
SA2000 Overview:
Juniper Networks SA Series appliances lead the SSL virtual private network (VPN) market with a complete range of remote access appliances,
including the SA200, SA400, and SA6000. Juniper Networks SA Series appliances combine the security of SSL with standards-based access controls,
granular policy creation, and unparalleled flexibility. The result provides ubiquitous security for all enterprise tasks with options for
increasingly stringent levels of access control to protect the most sensitive applications and data. Juniper Networks SA Series appliances
deliver lower total cost of ownership over traditional IPsec client solutions and unique
end-to-end security features.
The Juniper Networks SA2000, SA4000, and SA6000 SSL VPN Appliances meet the needs of companies of all sizes. SA Series appliances are based
on the Instant Virtual Extranet (IVE) platform, which uses SSL, the security protocol found in all standard Web browsers. The use of SSL eliminates
the need for pre-installed client software deployment, changes to internal servers, and costly ongoing maintenance and desktop support. SA Series
appliances also offer sophisticated partner/customer extranet features that enable controlled access to differentiated users and groups with no
infrastructure changes, no DMZ deployments, and no software agents.
Architecture and Key Components
The Juniper Networks SA2000 SSL VPN Appliance enables small- to medium-size businesses (SMBs) to deploy cost-effective remote and extranet access,
as well as intranet security. Users can access the corporate network and applications from any machine over the Web. The SA2000 offers high availability
(HA) with seamless user failover.
Features & Benefits:
End-to-End Layered Security
The SA2000, SA4000, and SA6000 provide complete end-to-end layered security, including endpoint client, device, data, and server layered security controls. These include:
| Features |
Features
Description |
Benefits |
|
Host Checker |
Client computers can be checked both prior to and during a session to verify an acceptable device security posture requiring
installed/running endpoint security applications (antivirus, firewall, etc.) also supports custom built checks including verifying ports opened/closed, checking files/processes and validating their authenticity
with Message Digest 5 (MD5) hash checksums, verifying registry settings, machine certificates, and more |
Verifies/ensures that endpoint device meets corporate security policy requirements before granting access, remediating devices and
quarantining users when necessary |
| Host Checker Application Programming Interface (API) |
Created in partnership with best-in-class endpoint security vendors. Enables enterprises to enforce an endpoint trust policy for managed PCs that have personal firewall, antivirus clients, or other installed
security clients, and quarantine non-compliant devices |
Utilize current security policies with remote users and devices; easier management |
|
Trusted Network Connect (TNC) support on Host Checker |
Allows interoperability with diverse endpoint security solutions from antivirus to patch management to compliance management solutions |
Enables customers to leverage existing investments endpoint security solutions from third-party vendors |
| Policy-based enforcement |
Allows the enterprise to establish trustworthiness of non-API compliant hosts without writing custom API implementations or locking out external users, such as customers or partners that run other security clients |
Enables access to extranet endpoint devices like PCs from partners that may run different security clients than that of the enterprise |
|
Hardened security appliance and Web server |
Hardened security infrastructure extensively audited by third-party security experts including CyberTrust, iSec Partners, and has also received Common Criteria Certification |
Not designed to run any additional services and is thus less susceptible to attacks; no backdoors to exploit or hack |
| Security services employ kernel-level packet filtering and safe routing |
Undesirable traffic is dropped before it is processed by the TCP stack |
Ensures that unauthenticated connection attempts, such as malformed packets or denial of service (DoS) attacks, are filtered out |
| Secure Virtual Workspace
(Advanced Feature Set) |
A secure and separate environment for remote sessions that encrypts all data and controls I/O access (printers, drives, etc.) |
Ensures that all corporate data is securely deleted from a kiosk or other unmanaged endpoint after a session |
| Cache cleaner |
All proxy downloads and temp files installed during the session are erased at logout |
Ensures that no potentially sensitive session data is left behind on the endpoint machine |
| Data trap and cache controls |
Rendering of content in non-cacheable format |
Prevents sensitive metadata (cookies, headers, form entries, etc.) from leaving the network |
| Integrated malware protection |
Pre-installed checks to protect users & devices from keyloggers, trojans, and remote control applications |
Enables customers to provision endpoint containment capabilities |
| Coordinated threat control |
Enables SA Series SSL VPN Appliances and Juniper Networks IDP Series Intrusion Detection and Prevention Appliances to tie the session identity of the SSL VPN with the threat detection
capabilities of the IDP Series, taking automatic action on users launching attacks |
Effectively identify, stop, and remediate both network and application-level threats within remote access traffic |
Lower Total Cost of Ownership
In addition to enterprise-class security benefits, the SA2000, SA4000, and SA6000 have a wealth of features that enable low total
cost of ownership.
|
Features |
Features Description |
Benefits |
|
Uses SSL |
Secure connection between remote user and internal resource is via a Web connection at the application layer |
Secure remote access with no client software deployment, maintenance, and no changes to existing servers; no firewall proxy and network address translation (NAT) traversal issues |
|
Based on industry-standard protocols and security methods |
No installation or deployment of proprietary protocols required |
The investment in the SA Series appliance can be leveraged across many applications and resources over time |
|
Extensive directory integration and broad interoperability |
Existing directories in customer networks can be leveraged for authentication and authorization enabling granular secure access without recreating those policies |
Existing directory investments can be leveraged with no infrastructure changes; no API’s for directory integration as it’s all native/built in |
|
Integration with strong authentication and identity and access management platforms |
Ability to support SecurID, SAML, PKI/digital certificates |
Leverages existing corporate authentication methods to simplify administration |
|
Multiple hostname support
(Advanced Software Feature Set) |
Ability to host different virtual extranet websites from a single SA Series appliance |
Saves the cost of incremental servers, eases management overhead, and provides a transparent user experience with differentiated entry URLs |
|
Customizable user interface
(Advanced Software Feature Set) |
Creation of completely customized sign-on pages |
Provides an individualized look for specified roles, streamlining the user experience |
|
Juniper Networks Central Manager (Advanced Software Feature Set) |
Intuitive Web-based UI for configuring, updating, and monitoring SA Series appliances within a single device/cluster or across a global cluster deployment |
Conveniently manage, configure, and maintain
SA Series appliances from one central location |
|
“In Case of Emergency” (ICE) |
Provides licenses for a large number of additional users on a SA Series SSL VPN Appliance for a limited time when a disaster or epidemic occurs |
Enables a company to continue business operations by maintaining productivity, sustaining partnerships, and delivering continued services to customers when the unexpected happens |
|
Cross-platform support |
Ability for any platform to gain access to resources (e.g., Windows, Mac, Linux, mobile devices) |
Provides flexibility in allowing users to access corporate resources from any type of device using any type of operating system |
Rich Access Privilege Management Capabilities
The SA2000, SA4000, and SA6000 provide dynamic access privilege management capabilities without infrastructure changes, custom development, or software
deployment/maintenance. This facilitates the easy deployment and maintenance of secure remote access, as well as secure extranets and intranets. When a user
logs in to the SA Series appliance, they pass through a pre-authentication assessment, and are then dynamically mapped to the session role that combines
established network, device, identity, and session policy settings. Granular resource authorization policies further ensure exact compliance to security strictures.
|
Features |
Features Description |
Benefits |
|
Hybrid role-/resource-based policy model |
Administrators can tailor access |
Ensures that security policies reflect changing business requirements |
|
Pre-authentication assessment |
Network and device attributes, including presence of Host Checker/Cache Cleaner, results of endpoint security scans, source IP, browser type, and digital certificates, can be examined before login is allowed |
Results used in dynamic policy enforcement decisions |
|
Dynamic authentication policy |
Enables administrators to establish a dynamic authentication policy for each unique session |
Leverages the enterprise’s existing investment in directories, PKI, and strong authentication |
|
Dynamic role mapping |
Combines network, device, and session attributes to determine which of three different types of access is allowed |
Enables the administrator to provision by purpose for each unique session |
|
Resource authorization |
Extremely granular access control to the URL, server, or file level |
Allows administrators to tailor security policies to specific groups, providing access only to essential data |
|
Granular auditing and logging |
Can be configured to the per-user, per-resource, per-event level for security purposes as well as capacity planning |
Fine-grained auditing and logging capabilities in a clear, easy to understand format |
|
Custom expressions
(Advanced Software Feature Set) |
Enables the dynamic combination of attributes on a “per-session” basis, at the role definition/mapping rules and the resource authorization policy level |
Finer granularity and customization of policy roles |
User Self-Service
The SA2000, SA4000, and SA6000 offer comprehensive password management features. These features increase end user productivity, greatly simplify administration of large
diverse user resources, and significantly reduce the number of help desk calls.
|
Features |
Features Description |
Benefits |
|
Password management integration |
Standards-based interface for extensive integration with password policies in directory stores (LDAP, Microsoft Active Directory, NT, etc.) |
Leverage existing servers to authenticate users; users can manage their passwords directly through the SA Series interface |
|
Web-based single sign-on (SSO) basic authentication
and NTLM |
Allows users to access other applications or resources that are protected by another access management system without re-entering login credentials |
Alleviates the need for end users to enter and maintain multiple sets of credentials for Web-based and Microsoft applications |
|
Web-based SSO
forms-based, header
variable-based, SAML-based
(Advanced Feature Set) |
Ability to pass user name, credentials, and other customer-defined attributes to the authentication forms of other products and as header variables |
Enhances user productivity and provides a customized experience |
Provision by Purpose
The SA2000, SA4000 and SA6000 include three different access methods. These different methods are selected as part of the user’s role, so the administrator can enable the appropriate access on a per-session basis, taking into account user,
device, and network attributes in combination with enterprise security policies.
|
Features |
Features Description |
Benefits |
|
Clientless Core Web Access |
Access to Web-based applications, including complex JavaScript, XML, or Flash-based apps and Java applets that require a socket connection, as well as standards-based email,
Windows and UNIX file share, telnet/SSH hosted-applications, Citrix and Windows Terminal Services, Terminal Emulation, etc. |
Provides the most easily accessible form of application and resource access from a variety of end-user machines, including handheld devices, and enables extremely granular
security control options; completely clientless approach using only a Web browser |
|
Secure Application Manager (SAM)
(SAMNC License) |
A lightweight Java or Windows-based download enabling access to client/server applications |
Enables access to client/server applications using just a Web browser; also provides native access to terminal server applications without the need for a pre-installed client |
Network Connect (NC)
(SAMNC License) |
Provides complete network-layer connectivity via an automatically provisioned cross-platform download; Windows Logon/GINA integration for domain single sign-on (SSO); installer services to mitigate need for admin rights |
Users need only a Web browser; Network Connect transparently selects between two possible transport methods, to automatically deliver the highest performance possible for every network environment; when used with Juniper
Installer Services, no admin rights needed to install, run, and upgrade Network Connect; optional stand-alone installation available as well |
Product Options:
The SA2000, SA4000, and SA6000 have several hardware and software options that can be added to the products.
Advanced Endpoint Defense: Integrated Malware
Protection Option
Advanced Endpoint Defense: Malware Protection is an endpoint security software module that integrates with Host Checker and provides protection from unwanted malware,
such as trojan horses and key loggers residing on an endpoint from which an end user is looking to start a remote access session. The malware module is configured as a
Host Checker module and is dynamically delivered to the end-user’s PC, with no software to pre-install. All SA Series appliances include a license for 25 concurrent users,
free of charge. Customers must purchase additional licenses in order to increase this functionality to support more users.
The Advanced Endpoint Defense: Integrated Malware Protection upgrade is available for the SA2000, SA4000, and SA6000.
Secure Application Manager and Network Connect Upgrade Option
The SAM and NC upgrade is a companion to Juniper Networks Core Clientless access for SSL VPNs. SAM and NC provide cross-platform support for client/server applications using SAM,
as well as full network-layer access using the adaptive dual transport methods found in NC. The combination of SAM and NC with Core Clientless access will provide secure access to
virtually any audience, from remote/mobile workers to partners or customers, using a wide range of devices from any network.
Although SAM and NC deliver two different access methods, administrators can specify exactly which access method, or combination of access methods, they wish to assign for each
user in every deployment scenario. This allows administrators to provision by purpose, balancing security concerns with access requirements. Dynamic access controls enable the access
to change as user, endpoint, and network criteria change.
The SAMNC upgrade is available for the SA2000, SA4000, and SA6000 appliances.
Advanced Feature Set
The SA Series appliances are offered with either baseline or advanced feature sets, designed to create an affordable solution that meets the needs of every company, from SMB employee
remote access deployments to the largest global enterprise extranet. The baseline features that come with the appliance provide the functionality that an enterprise would need to deploy
secure remote access, as well as a provision a basic customer/partner extranet or intranet. The advanced feature set provides additional sophisticated capabilities that will meet the needs
of more complex deployments with diverse audiences and use cases, including SA Series Central Manager, a robust product with an intuitive Web-based UI designed to facilitate the task of
configuring, updating, and monitoring a single SA Series appliance or a single cluster deployment. Both feature sets provide remote access, extranet, and intranet capabilities
with little to no need for client software, server changes, DMZ build-outs, or software agent deployments. The advanced
feature set includes:
- Advanced PKI support including ability to import multiple root and intermediate CAs, OCSP, and multiple server certificates
- User self service
- Access management integration
- Multiple hostname support
- Customizable UI
- Combine attributes using Boolean expressions, for flexible, dynamic, “per-session” policies
- Advanced role definition and role mapping rules combine attributes using Boolean expressions
- Advanced resource authorization policies combine attributes using Boolean expressions
- Role-based delegation, configurable at the individual task level
- Flexible role definition
- Juniper Networks Central Manager
- Secure Virtual Workspace
The Advanced Feature upgrade is available for the SA2000,
SA4000, and SA6000.
Secure Meeting Option
The Secure Meeting upgrade license extends the capabilities of the SA Series appliances by providing secure anytime, anywhere, cost effective online Web
conferencing and remote control PC access. Secure Meeting enables real-time application sharing so authorized employees and partners can easily schedule
online meetings or activate instant meetings through an intuitive Web interface that requires no training or special deployments. Help desk staff or customer
service representatives can provide remote assistance to any user or customer by remotely controlling their PC without requiring the user to install any software.
Best-in-class authentication, authorization, and accounting (AAA) capabilities enable companies to easily integrate Secure Meeting with their existing internal
authentication infrastructure and policies. Juniper’s market-leading, hardened, and Common Criteria certified SSL VPN appliance architecture and SSL/HTTPS transport
security for all traffic means that administrators can rest assured that their Web conferencing and remote control solution adheres to the highest levels of enterprise
security requirements.
The Secure Meeting upgrade is available for the SA2000, SA4000, and SA6000.
Instant Virtual System Option
Juniper Networks Instant Virtual System (IVS) option is designed to enable administrators to provision 255 logically independent SSL VPN gateways within a single appliance/cluster.
This enables service providers to offer network-based SSL VPN managed services to multiple customers from a single device or cluster, as well as enabling enterprises to completely
segment SSL VPN traffic between multiple groups. IVS enables complete customer separation and provides segregation of traffic between multiple customers using granular role based
VLAN (802.1Q) tagging. This enables the secure segregation of end users’ traffic, even if two customers have overlapping IP addresses and enables provisioning of specific VLANs for
different user constituencies, such as remote employees and partners of customers. DNS/WINS, AAA, log/accounting servers and application servers such as Web mail, file shares, etc.
can reside either in the respective customers’ intranets or in the service provider network. Service providers can provision an overall concurrent number of users on a per customer
basis with the flexibility to distribute further amongst different user audiences such as remote employees, contractors, partners, etc.
The IVS upgrade is available for the SA4000 and SA6000.
High Availability Option
Juniper Networks has designed a variety of HA clustering options to support the SA Series appliances, ensuring redundancy and seamless failover in the rare case of a system failure.
These clustering options also provide performance scalability to handle the most demanding usage scenarios. The SA2000 and SA4000 can be purchased in Cluster Pairs and the SA6000 can be
purchased in a Multi-Unit Clusters or Cluster Pairs, to provide complete redundancy and expansive user scalability. Both Multi-Unit Clusters and Cluster Pairs feature stateful peering and
failover across the LAN and WAN, so in the unlikely event that one unit fails, system configurations (including authentication server, authorization groups, bookmarks, etc.), user profile
settings (including user-defined bookmarks, cookies, etc.), and user sessions are preserved. Failover is seamless, so there is no interruption to user/enterprise productivity, no need for
users to log in again, and no downtime. Multi-Unit Clusters are automatically deployed in Active/Active mode, while Cluster Pairs can be configured in either Active/Active or Active/Passive Mode.
The HA option is available for the SA2000, SA4000, and SA6000.
ICE Option
SSL VPNs can help to keep organizations and businesses functioning by connecting people even during the most unpredictable circumstances – hurricanes, terrorist attacks, transportation
strikes, pandemics or virus outbreaks, the result of which could mean the quarantine or isolation of entire regions or groups of people for an extended period of time. With the right balance
of risk and cost, the Juniper Networks SA Series ICE offering delivers a timely solution for addressing a dramatic peak in demand for remote access to ensure business continuity whenever a
disastrous event strikes. ICE provides licenses for a large number of additional users on a SA Series SSL VPN Appliance for a limited time. With ICE, businesses can:
- Maintain productivity by enabling ubiquitous access to applications and information for employees from anywhere, anytime, and any device
- Sustain partnerships with around the clock real-time access to applications and services while knowing resources are secured and protected
- Continue to deliver exceptional service to customers and partners with online collaboration
- Meet federal and government mandates for contingencies and continuity of operations (COOP) compliance
- Balance risk and scalability with cost and ease of deployment
The ICE license is available for the SA4000 and the SA6000 and includes all of the following features:
- Baseline
- Advanced
- Secure Application Manager and Network Connect
- Secure Meeting
- SSL Acceleration
Technical Specifications:
| Model: |
SA2000 |
SA4000 |
SA6000 |
|
 |
 |
 |
|
Dimensions and Power |
|
Size (W x H x D) |
16.7 x 1.74 x 15 in
(42.4 x 4.4 x 38.1 cm) |
16.7 x 1.74 x 15 in
(42.4 x 4.4 x 38.1 cm) |
16.7 x 3.5 x 16.2 in
(42.4 x 8.9 x 41.2 cm) |
|
Weight |
13.6 lb (6.17 kg)
typical (unboxed) |
13.6 lb (6.17 kg)
typical (unboxed) |
28.5 lb (12.94 kg)
typical (unboxed) |
|
Rack mountable |
Yes, 19 in |
Yes, 19 in |
Yes, 19 in |
|
A/C power supply |
100-240 VAC, 50-60 Hz, 2.5 A
Max, 260 Watts |
100-240 VAC, 50-60 Hz, 2.5 A
Max, 260 Watts |
100-240 VAC, 50-60 Hz, 2.5 A
Max, 260 Watts |
|
System battery |
CR2032 3V lithium coin cell |
CR2032 3V lithium coin cell |
CR2032 3V lithium coin cell |
|
Efficiency |
65% minimum, at full load |
65% minimum, at full load |
65% minimum, at full load |
|
MTBF |
87,000 hours |
70,000 hours |
78,000 hours |
|
Material |
18 gauge (.048 in) cold-rolled steel |
18 gauge (.048 in) cold-rolled steel |
18 gauge (.048 in) cold-rolled steel |
|
Fans |
1 blower, 1 - 40 mm ball
bearing fan in power supply |
3 - 40 mm ball bearing fans,
1 - 40 mm ball bearing fan in
power supply |
2 externally accessible, hot
swappable ball-bearing fans |
|
Panel Display |
|
Front panel power button |
Yes |
Yes |
Yes |
|
Power LED, HD activity, temp |
Yes |
Yes |
Yes |
|
PS fail |
No |
No |
Yes |
|
HDD activity and RAID status LEDs |
No |
No |
Yes |
|
Ports |
|
Traffic |
Two RJ-45 Ethernet - 10/100/1000
full or half-duplex (auto-negotiation) |
Two RJ-45 Ethernet - 10/100/1000
full or half-duplex (auto-negotiation) |
Two RJ-45 Ethernet - 10/100/1000
full or half-duplex (auto-negotiation)
Two SFP ports – Gigabit Ethernet |
|
Management |
N/A |
N/A |
One RJ-45 Ethernet - 10/100/1000 full or half-duplex (auto-negotiation) |
|
Fast Ethernet |
IEEE 802.3u compliant |
IEEE 802.3u compliant |
IEEE 802.3u compliant |
|
Gigabit Ethernet |
IEEE 802.3z or IEEE 802.3ab compliant |
IEEE 802.3z or IEEE 802.3ab compliant |
IEEE 802.3z or IEEE 802.3ab compliant |
|
Console |
One 9-pin serial console port |
One 9-pin serial console port |
One 9-pin serial console port |
|
Environment |
|
Operating Temperature |
50° to 95° F
(10° to 35° C) |
50° to 95° F
(10° to 35° C) |
50° to 95° F
(10° to 35° C) |
|
Storage Temperature |
-40° to 158° F
(-40° to 70° C) |
-40° to 158° F
(-40° to 70° C) |
-40° to 158° F
(-40° to 70° C) |
|
Relative Humidity (Operating) |
8% to 90% noncondensing |
8% to 90% noncondensing |
8% to 90% noncondensing |
|
Relative Humidity (Storage) |
5% to 90% noncondensing |
5% to 90% noncondensing |
5% to 90% noncondensing |
|
Altitude (Operating) |
-50 to 10,000 ft (3,000 m) |
-50 to 10,000 ft (3,000 m) |
-50 to 10,000 ft (3,000 m) |
|
Altitude (Storage) |
-50 to 35,000 ft (10,600 m) |
-50 to 35,000 ft (10,600 m) |
-50 to 35,000 ft (10,600 m) |
|
Certifications |
|
Safety Certifications |
EN60950-1:2001+ A11,
UL60950-1:2003, CSA
C22.2 No. 60950-1, IEC 60950-1:2001 |
EN60950-1:2001+ A11,
UL60950-1:2003, CSA
C22.2 No. 60950-1, IEC 60950-1:2001 |
EN60950-1:2001+ A11,
UL60950-1:2003, CSA
C22.2 No. 60950-1, IEC 60950-1:2001 |
|
Emissions Certifications |
FCC Class A, VCCI Class A, CE class A |
FCC Class A, VCCI Class A, CE class A |
FCC Class A, VCCI Class A, CE class A |
|
Common Criteria EAL2 Certification |
Yes |
Yes |
Yes |
|
FIPS 140-2, Level 3 Certification |
No |
Yes |
Yes |
|
Warranty |
90 days; Can be extended with
support contract |
90 days; Can be extended with
support contract |
90 days; Can be extended with
support contract |
Performance-Enabling Services and Support
Juniper Networks is the leader in performance-enabling services and support, which are designed to accelerate, extend, and optimize your
high-performance network. Our services allow you to bring revenue-generating capabilities online faster so you can realize bigger productivity
gains, faster rollouts of new business models and ventures, and greater market reach, while generating higher levels of customer satisfaction.
At the same time, Juniper Networks ensures operational excellence by optimizing your network to maintain required levels of performance,
reliability, and availability.
|
SA Series Appliances |
Juniper Networks Secure Access 2000 SSL VPN Appliance
Note: Beginning with v6.1, SAMNC and Advanced included with Base System |
#SA2000
List Price: $2,500.00 |
|
|
User Licenses |
| Add 25 simultaneous user licenses to SA2000 |
#SA2000-ADD-25U
List Price: $4,945.00 |
|
| Add 50 simultaneous user licenses to SA2000 |
#SA2000-ADD-50U
List Price: $8,795.00 |
|
| Add 100 simultaneous user licenses to SA2000 |
#SA2000-ADD-100U
List Price: $15,995.00 |
|
|
Feature Licenses |
Advanced for SA2000
Note: Beginning with v6.1, SAMNC and Advanced included with Base System |
#SA2000-ADV
List Price: $2,995.00 |
|
Secure Application Manager and Network Connect for SA2000
Note: Beginning with v6.1, SAMNC and Advanced included with Base System |
#SA2000-SAMNC
List Price: $2,995.00 |
|
Secure Meeting for SA2000
Note: Enables the number of concurrent meeting users licensed on the box up to 50 users and 25 meetings in single unit or 100 users/50 meetings in cluster |
#SA2000-MTG
List Price: $4,495.00 |
|
|
Lab Licenses |
SA2000 Lab Unit License (10 simultaneous users, all features)
Note: This is a 1 year lab license only - requires ordering the base hardware system separately (SA2000). Can be renewed via JTAC ticket when valid maintenance contract exists. |
#SA2000-LAB
List Price: $2,495.00 |
|
|
Clustering Licenses |
Clustering Licenses: Allow 25 users to be shared from another SA2000
Note: Beginning with v6.1, SAMNC and Advanced included with Base System |
#SA2000-CL-25U
List Price: $4,395.00 |
|
Clustering Licenses: Allow 50 users to be shared from another SA2000
Note: Beginning with v6.1, SAMNC and Advanced included with Base System |
#SA2000-CL-50U
List Price: $7,695.00 |
|
Clustering Licenses: Allow 100 users to be shared from another SA2000
Note: Beginning with v6.1, SAMNC and Advanced included with Base System |
#SA2000-CL-100U
List Price: $12,495.00 |
|
SA2000 Lab Unit License: Clustering
Note: This is a 1 year lab license only - requires ordering the base hardware system separately (SA2000). Can be renewed via JTAC ticket when valid maintenance contract exists. |
#SA2000-LAB-CL
List Price: $1,000.00 |
|
|
Juniper Networks SA2000 SSL VPN Appliance