Secure Mobile Access 100 10.2 Administration Guide

Benefits of Application Offloading

An offloaded Web application has the following advantages over configuring the Web application as an HTTP(S) bookmark in Secure Mobile Access:

  • No URL rewriting is necessary, thereby improving throughput significantly.
  • The functionality of the original Web application is retained almost completely, while an HTTP(S) bookmark is a best-effort solution.
  • Application offloading extends Secure Mobile Access security features to publicly hosted Web sites.

Application offloading can be used in any of the following scenarios:

  • To function as an SSL off loader and add HTTPS support to the offloaded Web application, using SSL acceleration of the SMA appliance.
  • In conjunction with the Web Application Firewall subscription service to provide the offloaded Web application continuous protection from malicious Web attacks.
  • To add strong or stacked authentication to the offloaded Web application, including Two-factor authentication, One Time Passwords and Client Certificate authentication.
  • To control granular access to the offloaded Web application using global, group or user-based access policies.
  • To support Web applications not currently supported by HTTP/HTTPS bookmarks. Application Offloading does not require URL rewriting, thereby delivering complete application functionality without compromising throughput.
  • To authenticate ActiveSync Application Offloading technology that delivers Web applications using Virtual Hosting and Reverse Proxy. ActiveSync authentication does not require URL rewriting to deliver the Web applications seamlessly. As an example, the ActiveSync protocol is used by a mobile phone’s email client to synchronize with an Exchange server.

Appliance Platforms

Application Offloading and HTTP(S) bookmarks are supported on all the SMA appliances that support the SonicWall Secure Mobile Access 10.2 release:

  • SMA 200/400
  • SMA 210/410
  • SMA 500v for KVM
  • SMA 500v for ESXi
  • SMA 500v for Hyper-V
  • SMA 500v for AWS
  • SMA 500v for Azure

HTTP Versions

HTTP(S) bookmarks and application offloading portals support both HTTP/1.0 and HTTP/1.1.

Certain performance optimization features, such as caching, compression, SSL hardware acceleration, HTTP connection persistence, TCP connection multiplexing and transfer-chunk encoding for proxies are automatically enabled depending on the usage.

Applications

SharePoint 2016 and SharePoint 2019 are supported with application offloading, but not with HTTP(S) bookmarks. The following features have been tested and verified as working well on the indicated browsers:

Supported SharePoint Features
SharePoint FeaturesBrowsers
Add AnnouncementChrome 86 and later
Delete AnnouncementFirefox 83.0 and later
Download Document
Add Document
Delete Document
Add New Item
Delete Item

The following Web applications have been tested and verified to work with HTTP(S) bookmarks and as offloaded applications:

  • Microsoft Outlook on the Web (Exchange 2019)
  • Outlook Web Access 2016

Outlook Web Access is supported on the SMA 200/400, SMA 210/410, SMA 500v for KVM, SMA 500v for ESXi, SMA 500v for Hyper-V, SMA 500v for AWS, and SMA 500v for Azure.

  • Windows SharePoint 2016 (supported only using App Offloading)
  • Windows SharePoint 2019 (supported only using App Offloading)

The integrated client features of SharePoint are not supported.

Exchange ActiveSync is supported on Apple iPhone, Apple iPad, and the latest Android-based phones and tablets.

Application Offloading supports authentication for ActiveSync. ActiveSync is a protocol used by a mobile phone’s email client to synchronize with an Exchange server. The Administrator can create an offloading portal and set the application server host to the backend Exchange server. Then, a user can use the new virtual host name in a mobile phone’s email client and synchronize with the backend Exchange server through the SMA appliance.

Authentication Schemes

The following authentication schemes are supported for use with application offloading and HTTP(S) bookmarks:

  • Basic – Collects credentials in the form of a username and password.
  • Forms-based authentication – Uses a Web form to collect credentials.

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.