I am looking into replacing a current, clientless SSL VPN; however, there are some parameters that this device (solution) must be able to exceed, or moving forward with Cisco would not be an option.
Parameters to succeed:
- URL-specific granularity down to a person (or group)
- (logon security - some people will see different options/applications; whereas, others won't see that option at all
- not a full tunnel (only exist in web browser)
- ability to restrict HTTP redirects
I believe the URL-granularity is good, but I am having difficulty finding good answers for the rest. I would appreciate any input.