Preface
16 Avaya VPNmanager Configuration Guide Release 3.7
Network-wide Visibility and ControlThe logical VPNmanager representation of virtual private networks simplifies their installation
and control. From a single workstation, network managers can assign users anywhere on the
network to one or more logical Groups and integrate local and remote Groups into VPNs. The
VPNmanager software provides global-level, VPN-level, group-level, client-level and
equipment-level monitoring and control capabilities, and automates the task of managing
configurations across multiple security gateways and Avaya VPNremote® Clients. Extensive
alarm-reporting and statistics-gathering capabilities allow network managers t o respond in real
time to hardware, network, and security problems, and to plan the efficient growth and ev oluti on
of their networks.
Intranet and Extranet SupportThe VPNmanager software makes it easy to extend intranet services to remote sites and users
securely. In addition, the VPNmanager’s sophisticated import and export capabilities enable
network managers from different organizations to securely link with one another into private
wide-area “extranets.” Companies can quickly link and unlink to their suppliers, customers,
consultants, and other business associates with flexibility and speed unmatched by traditional
communications services.
Secure VPN ConfigurationSeveral mechanisms are employed to insure security when managing VPNs. Industry-standard
Secure Socket Layer (SSL) technology is used to keep configuration traffic between the
VPNmanager and VSUs private. In addition, X.509 certificates are used by both VSUs and the
VPNmanager console providing an authentication capability, thus allowing only authorized
administrators to configure VSUs. Once authenticated, administrators can configure, modify,
restart, or upgrade any security gateway in the corporate network. Finally, sensitive
cryptographic keying information stored in the VPNmanager database is encrypted using a
password key to prevent compromising secure network traffic.
No Special Consoles RequiredThe VPNmanager software runs on host environments that support the Java Virtual Machine
(see the VPNmanager README file for a current list of supported platforms). Expensive
management consoles and proprietary management interfaces are not needed. Regardless of
the host platform, the VPNmanager software presents the same appearance and user controls.