Ivanti Neurons for Secure Access Overview

Ivanti Neurons for Secure Access delivers centralized management and analytics from the cloud for Ivanti Connect Secure (ICS) VPN gateways. Its unified interface controls an entire ICS deployment, greatly reducing the time, complexity and risks of managing multi-node VPN deployments. Risky or anomalous user behavior is addressed with automated remediation while collated gateway logs and customizable reports deliver actionable insights. Neurons for Secure Access minimizes overhead and maintains a secure environment to maximize the value of your VPN.

Neurons for Secure Access (nSA) is a SaaS-delivered, and is designed to work with both Ivanti Connect Secure (ICS) and Neurons for Zero Trust Access (nZTA).

  • nSA provides a unified interface allowing security admins to manage multiple gateways and/or locations quickly and efficiently.
  • nSA simplifies workflows by consolidating all logging, reporting and activity data to a single pane of glass.
  • Administrators gain powerful analytics tools to review the health status of their deployments as part of their daily routine.
  • Proprietary risk scores identify non-compliant or anomalous user activity, enabling admins to identify risky user activity and react accordingly.
  • Scheduled reports let admins design, customize and schedule reports to arrive in their inbox with the exact data they want to see.
img/arch_diagram.png

nSA works with existing ICS deployments and does not require additional hardware to be implemented, nor must any network or connectivity changes be made in order to integrate nSA into an ICS deployment. Registering an ICS Gateway with nSA will initiate secure WebSocket communications between the ICS Gateway and nSA. Once connected, the ICS Gateway logs and analytics are uploaded to nSA and can be viewed and reported on from the nSA portal. Gateway-management duties allowing for the ability to upgrade, roll back and restart — as well as provide troubleshooting tools — are all enabled once ICS is connected to nSA.

The following list shows the supported features and benefits.

  • Secure Access Foundation:
    • Manages Connect Secure Gateways and/or Zero Trust.
    • Access Gateways in all aspects.
    • Supports both existing and next-gen VPN gateways.
  • Gateway Lifecycle Management: Enables centralized upgrades, downgrades and restarts.
  • Configuration Management:
    • Supports gateway configurations.
    • Configuration groups for multi-node configuration management.
  • Single-Pane-of-Glass Visibility: Holistic visibility and compliance reporting of users, devices, applications and infrastructure across the enterprise.
  • User Entity Behavior Analytics (UEBA): Leverages analytical data to reduce security risks, detect anomalies, optimize user experience and adapt to a mobile workforce.
  • Local (Gateway) and Central Debugging: Enables getting back to business faster.
  • Hybrid Configuration Support: Gateways can be deployed in a variety of configurations including the cloud.