Reflection for the Web 2014 Enterprise Edition is terminal emulation software that securely connects web browser users to applications on IBM, HP, UNIX, and OpenVMS hosts. Centrally deployed and managed, Reflection for the Web 2014 offers easier automation, an enhanced user experience, and unrivaled security. With our advanced security features, you can safely connect to fully functioning host applications across the public Internet, and integrate your legacy applications into your modern LDAP-based security infrastructure.
|What’s New in Reflection for the Web 2014 Enterprise Edition?|
Secure, web-based terminal emulation for IBM, HP, UNIX, Linux, and OpenVMS hosts.
- Support for Java 7 and compatibility with the latest Java 7 security features.
- Integrated Windows Authentication using NTLM version 2.
- Central management of certificate stores across multiple servers with PKI Services Manager.
- Logs that support event sequencing and integrate smoothly with management frameworks.
- Customizable tooltips on the Button Palette.
With Reflection for the Web 2014 Enterprise Edition, you can:
- Securely connect local and remote web browser users to legacy applications running on IBM Mainframe, System i (AS/400), UNIX, OpenVMS, and HP hosts.
- Centrally install, deploy, and manage your terminal emulation applications.
- Safeguard your critical data with SHA-256 and TLS 1.2 security protocols.
- Support emerging technologies, including Windows 8.1, Windows 7, Windows Server 2012 R2, Google Chrome, and zLinux.
- Protect host sessions with patented secure token authorization and AES encryption over SSL/TLS and SSH.
- Take full advantage of scalable, high-performing servers with the automated 64-bit installers for Windows and Linux.
- Drag and drop icons to a configurable toolbar with a single click—and even map commands, keyboard actions, and macros to custom buttons.
- Use enterprise directory services, such as Active Directory, to control user access to sensitive data and resources—without making any changes to your LDAP schema or data.
- Facilitate compliance with regulations such as Payment Card Industry (PCI DSS), Sarbanes-Oxley, Gramm-Leach-Bliley, HIPAA/HITECH, and Basel II.
Administrators can configure new web-based terminal sessions using the Session Manager.
(Click image to enlarge)
After configuring a new web-based terminal session, administrators can manage it using the Session Manager, and control end-user access to the session using the Access Mapper.
(Click image to enlarge)
|More Editions of Reflection for the Web 2014|
- Reflection for the Web 2014 Unisys Edition
For Unisys ClearPath Libra, Unisys ClearPath Dorado, IBM Mainframe and AS/400, HP e3000, UNIX, and OpenVMS systems
- Reflection for the Web 2014 Airlines Edition
For IBM TPF, ALCS, and Unisys systems commonly used in the airline and travel industries—and for IBM Mainframe and AS/400, HP e3000, UNIX, and OpenVMS systems
Diagram 1: Reflection for the Web Architecture
Reflection for the Web offers:
- Centralized management—Host access sessions are administered on a web server.
- Web-based deployment—Clients are automatically deployed to end users through their web browsers.
- Multi-platform clients—Supports Windows, Mac, and Linux clients.
- Multi-platform servers—Supports Windows, Linux, UNIX, z/OS, zLinux and other servers.
- Load balancing—Automated data replication simplifies load balancing.
- Simplified administration—Includes the option to restrict access to specific LDAP users/groups.
- Multiple protocols—3270, 5250, VT, NS/VT, SSL/TLS, SSH, IND$FILE/FTP/Secure FTP/SFTP.
- One solution for multiple hosts—IBM System z (Mainframe), IBM System i (AS/400), UNIX/Linux, HP, and OpenVMS.
Diagram 2: Reflection for the Web Security
Reflection for the Web includes the following security features:
- LDAP access control—Restricts host access using LDAP user/group definitions.
- Non-intrusive LDAP integration—No schema changes required; no data stored in the directory.
- Firewall-friendly remote access—Accesses multiple hosts through one Security Proxy Server port.
- PKI support—Smart cards, X.509 certificates, CRL, and OCSP.
- Encryption—SSL/TLS, SSH, SFTP with AES 128/256, TripleDES, FIPS 140-2-validated cryptographic modules.
- Authentication—Active Directory Single Sign-On, PKI/smart cards, CA SiteMinder, web portals, and LDAP.
- Broad LDAP support—Active Directory, Novell eDirectory, RACF, and other RFC 2256-compliant LDAP directories.