OVERVIEW OF CITRIX ACCESS GATEWAY

CITRIX SYSTEMS, INC.

Citrix Systems, Inc., (NASDAQ:CTXS) is the global leader and the most trusted name in application delivery infrastructure. More than 180,000 organizations worldwide rely on Citrix to deliver any application to users anywhere with the best performance, highest security and lowest cost. Citrix customers include 100% of the Fortune 100 companies and 98% of the Fortune Global 500, as well as hundreds of thousands of small businesses and prosumers. Citrix has approximately 6,200 channel and alliance partners in more than 100 countries.

CITRIX ACCESS GATEWAY

Citrix Access Gateway is ranked by key industry analysts such as Gartner and Forrester Research as a leading SSL VPN product line. Deployed as a hardened appliance at the perimeter of an organizations network, it gives users a single point of secure access to applications and resources hosted in the datacenter.

PROVIDING A GREAT ACCESS EXPERIENCE:

With a Citrix Access Gateway solution users on any client with a Web browser and Internet access can establish a secure connection back to the corporate network and be productive wherever they go.

With an easy-to-use and intuitive interface, users receive the best possible experience, minimizing training and support calls. Features such as always-on access ensure sessions

Page 1

Overview of CAG

are automatically reconnected after losing a network connection, or when users roam between access points.

Citrix Access Gateway simplifies access from any machine by hiding the complexities from the user. Access can be challenging for a number of reasons. With other SSL VPN products, users often cannot gain full network access because they dont have administrative right on the client machine. The Citrix Access Gateway client installer will detect this situation and automatically install in non-administrator mode, allowing users to use all TCP and UDP protocols without reconfiguring applications. In situations when client software cant be installed or when users need quick access from a borrowed machine, Citrix Access Gateway enables access to protected websites, file shares and email from any device with a standard Web browser, including some handheld and small form-factor devices.

STRONG SECURITY FOR APPLICATIONS AND DATA

For administrators, Citrix Access Gateway acts as a point of control to secure your organizations vital resources with a number of key capabilities:

Endpoint analysis can be run on clients prior to authentication and continuously to determine the machines configuration and identity. Scans are included to detect: Most antivirus software (and ensure an up-to-date pattern file) Personal firewalls Operating system and patch level Browser type and version Known MAC addresses Client certificates Clients failing to meet the minimum configuration requirements can be given limited access and sent to remediation pages to install the correct software. Users can be authenticated with a number of strong forms of authentication including smartcards and various token-based methods, or from any authority that supports RADIUS or LDAP protocols. All communication with the client can be safely transmitted over the Internet because of strong traffic encryption with SSL and TLS. Application fluency allows administrators to create granular authorization policies on a number of the most common resource types. By understanding application protocols, Citrix Access Gateway enables administrators to easily control access to Web applications, file shares, email, applications hosted on Citrix Presentation Server, and any other applications requiring TCP or UDP connections to the data center. Administrators can grant or deny access to resources based user identity and group membership (derived from LDAP or RADIUS authorities). In addition, policies can be based on the clients access scenario (defined by client configuration, machine identity or network location), allowing access permissions to change as users move between machines.

Page 2

Overview of CAG

Patent-pending Citrix Smart Access technology with Action Rights not only controls what resources a user can access, but also determines the most secure and optimal way to provide access. User and administrator activities can be tracked with the auditing capabilities of Citrix Access Gateway. Optionally, log entries can be sent to an external Syslog server to consolidate entries with other products in the network. With a number of redundancy options, Citrix Access Gateway ensures sessions remain uninterrupted when a single appliance or an entire datacenter site becomes unavailable.

SIMPLE ADMINISTRATION AND LOW TOTAL COST OF OWNERSHIP

Citrix Access Gateway is loaded with features to reduce administrative tasks. With an autodownloading and auto updating client, there is no need to touch every client machine. Users can launch any Web browser and deploy the software required to gain access from most Windows desktops, and Linux, and Mac OS X clients. Centralized administration allows management of all appliances from a single console, and role-based administration allows organizations to delegate responsibility to multiple individuals. SNMP support minimizes the need to regularly monitor each appliance for health and performance status, allowing Citrix Access Gateway appliances to notify common network monitoring and management systems when notable events occur. With capabilities such as multiple authentication points and virtual servers, a single appliance can be configured to support many diverse segments of the user population. Company employees can be directed to a dedicated logon page and authenticate to the standard corporate directory. Partners can use another URL to access a separate logon page and authenticate to a directory containing partner accounts. The same technique can be applied when new companies are acquired, allowing rapid access to information without requiring user accounts to be merged with the main company directory. As new requirements emerge, youll have the flexibility to rapidly meet these new demands with your existing infrastructure and stretch your capital investment further than you expected.

END-TO-END APPLICATION DELIVERY WITH CITRIX PRESENTATION SERVER

Citrix Access Gateway works with Citrix Presentation Server to provide the most fully integrated application delivery infrastructure on the market. The combined solution gives users the best access experience and ensures the tightest control of business-critical resources. Citrix Presentation Server hosts applications on servers in the datacenter and provides virtualized access to these applications from most client platforms. The application and its documents remain securely in the data center but are made available to clients over a network connection. Citrix Access Gateway treats these hosted applications like any other protected resource, acting as a single point of control to ensure secure delivery. Administrators can define policies to determine the applications available to a user, and change this access as the access scenario changes. As users move between clients, Access Gateway and Presentation Server products work in conjunction to automatically reconnect users to the applications they had previously accessed a technology called Citrix Smooth Roaming.

Page 3

Overview of CAG

SmoothRoaming will respect scenario-based policies. For example, if users who were accessing a sensitive financial application from the office want to move to a home computer, policies can be implemented to disallow SmoothRoaming from reconnecting to the application at home. Action Rights can also be enforced with Citrix Presentation Server. Administrators can create policies forcing documents to be viewed in a virtualized environment for the highest level of data protection. Key application capabilities, such as printing to the clients local printer or saving to the clients local drive, can also be disabled by a policy. Administrators gain control over the flow of sensitive information by disabling the ability to save data to untrusted client machines.

With the integrated application delivery infrastructure provided by Citrix Access Gateway and Citrix Presentation Server, users will also benefit because the applications they need will be available from anywhere.

DESIGNED TO MEET THE REQUIREMENTS OF ANY ORGANIZATION

With three editions, Citrix Access Gateway is a comprehensive product line giving you the flexibility to choose the capabilities and price point thats right for your organization. Citrix Access Gateway Standard Edition is easy to deploy, simple to manage and the most cost-effective solution on the market. With an Access Gateway appliance in your DMZ, youll have secure access to your protected resources including applications hosted on Citrix Presentation Server. Citrix Access Gateway Advanced Edition is a solution geared for small and medium-sized deployments. It extends access to more devices and users by adding features such as browseronly access to resources, support for mobile devices, and a sophisticated policy engine with extensive Smart Access capabilities and Action Rights control.

Citrix Access Gateway Enterprise Edition is the best solution for demanding enterprise environments, offering maximum scalability, performance and flexible management options. Built-in highavailability options support business continuity planning with redundant application pairs and seamless multi-site failover options. Integrated application acceleration and optimization capabilities further increase remote access performance to give your users the best access experience.

More Information

You can find more information on the Citrix Access Gateway product line by visiting http://www.citrix.com

Page 4

Overview of CAG