Propalms TSE ties in with existing domain infrastructures (Active Directory or NT) and provides granular control over which users, groups of users or organizational units (OUs) have access to a defined set of server-based applications, content or virtual desktops. Only users and groups authenticated by their domain credentials and provisioned through Propalms TSE's full-featured systems management console will be able to access certain applications and data.
Propalms TSE provides a quick and secure remote access solution. Remote access can be provided to users through a secure Web Portal (Application LaunchPad). Using TSE's in built Secure Relay Server (SSL Gateway) all remote access users can be securely connected to the applications they require over the Internet. TSE makes remote access easy as all the users require is a web browser and an Internet connection. There is no complicated client configuration required as with some other remote access solutions and users only see the applications they are authorised to.
Privacy Through Encryption:
All sensitive information is encrypted from the login request right through to the delivery of an application and data:
Users accessing the Propalms TSE system from outside their company's firewall will be routed via a single, configurable port to Propalms TSE's Relay Server component which makes the firewall traversal much easier.
The Relay Server will expose a single IP address to the client representing the entirety of the application server team, which makes Terminal Server access much more secure. Individual IP addresses of the Terminal Servers will be hidden behind the firewall.
Terminal Servers can also be locked down to prevent RDP sessions not originating from the Propalms TSE system.
At the time an application, or a range of applications, is published to an individual user or the member of a group, Propalms TSE will create user-specific shortcuts on that user's desktop or application portal, the Application Launch Pad, so that:
- A user does not have access to applications when they are no longer a member of the domain or have access privileges removed.
- Shortcuts are removed when the user next logs in to the system.
- All application usage is monitored, metered and reported in the Management Console for quality of service and audit purposes.
Terminal Services Edition's Client Policy Engine™ allows system administrators to:
- Define groups of client devices identified by their IP address, NetBIOS name, operating system or organizational unit (OU).
- Assign certain application access policies to client groups to reflect types of connection settings according to available bandwidth, printer mappings or security settings related to saving files and passwords locally.
- Set and enforce security policies based not only on who the user is, but also whether the access device is a trusted or non-trusted device based on its physical location.