Application Offloading Overview - Dell SMA 200 Administration Manual

• Configuring an HTTP/HTTPS Application Offloading Portal
• Configuring Application Offloading with SharePoint 2013
• Microsoft Outlook Anywhere with Autodiscover Overview
• Configuring the Outlook Anywhere Portal

Application Offloading Overview

Application Offloading provides secure access to both internal and publicly hosted Web applications. An
application offloading host is created as a special-purpose portal with an associated virtual host acting as a
proxy for the backend Web application.
Unlike HTTP(S) bookmarks, access to offloaded applications is not limited to remote users. The administrator
can enforce strong authentication and access policies for specific users or groups. For instance, in an
organization certain guest users might need Two-factor or Client Certificate authentication to access Outlook
Web Access (OWA), but are not allowed to access OWA public folders. If authentication is enabled, multiple
layers of Dell SonicWALL advanced authentication features such as One Time Password, Two-factor
Authentication, Client Certificate Authentication and Single Sign-On can be applied on top of each other for the
offloaded host.
The portal must be configured as a virtual host with a suitable Secure Mobile Access domain. It is possible to
disable authentication and access policy enforcement for such an offloaded host.
Web transactions can be centrally monitored by viewing the logs. In addition, Web Application Firewall can
protect these hosts from any unexpected intrusion, such as Cross-site scripting or SQL Injection.
Access to offloaded Web applications happens seamlessly as URLs in the proxied page are not rewritten in the
manner used by HTTP or HTTPS bookmarks.
An offloaded Web application has the following advantages over configuring the Web application as an HTTP(S)
bookmark in Secure Mobile Access:
• No URL rewriting is necessary, thereby improving the throughput tremendously.
• The functionality of the original Web application is retained almost completely, while an HTTP(S)
bookmark is only a best-effort solution.
• Application offloading extends Secure Mobile Access security features to publicly hosted Web sites.
Application offloading can be used in any of the following scenarios:
• To function as an SSL offloader and add HTTPS support to the offloaded Web application, using the
integrated SSL accelerator hardware of the SMA/SRA appliance.
• In conjunction with the Web Application Firewall subscription service to provide the offloaded Web
application continuous protection from malicious Web attacks.
• To add strong or stacked authentication to the offloaded Web application, including Two-factor
authentication, One Time Passwords and Client Certificate authentication.
• To control granular access to the offloaded Web application using global, group or user based access
policies.
on page
on page
on page
on page 167
Dell SonicWALL Secure Mobile Access 8.5
164
166
166
Administration Guide
150