Ivanti Secure Access Client
Designed as the endpoint interface for Ivanti’s secure access solutions, Ivanti Secure Access Client (ISAC) centralizes identity management, device compliance checks and VPN or Zero Trust session initiation, enabling your organization to deliver consistent and secure connectivity no matter where users work or what devices they use.
Ivanti Secure Access Client eliminates the need to deploy and maintain multiple, separate clients for remote and local access control. Users simply ‘click and connect’ to the resources they need.
Simplify secure connections for remote, hybrid and mobile workers, removing user friction with single sign-on (SSO) and integrated authentication.
Support not only legacy VPN requirements, but enable smooth migration towards Zero Trust Network Access, future-proofing your organization’s security architecture investment.
ISAC delivers robust support for all major platforms — Windows, macOS, iOS, Android and Linux — ensuring consistent policies and workflows organization-wide.
Check endpoint status, access activity and device posture (such as malware protection and OS updates) before granting access, blocking threats from non-compliant endpoints.
ISAC provides IT and Security teams with real-time analytics, reporting and automated remediation workflows to quickly address security issues and speed incident response.
Features and capabilities
The Ivanti Secure Access Client integrates natively with our extensive secure access, endpoint security and management solutions, enabling centralized policy enforcement and visibility.
Encrypted for protected network access.
Seamless switching between remote and local access control services.
Comprehensive endpoint visibility and security.
Facilitates cloud and web application access.
Leverages existing corporate authentication methods.
Restricts access to authorized users.
Related products
Ivanti Secure Access Client provides cross-platform compatibility to help organizations enforce consistent security policies across a wide range of devices.
Ivanti Secure Access Client supports desktop platforms including Windows (Intel x86 and ARM for VPN Windows), macOS (Intel and Apple Silicon M1/M2/M3/M4/M5) and Linux. For mobile platforms, Ivanti Secure Access Client provides native support for iOS, Android and Google ChromeOS via the Android app.
For the most current platform and version details, see the Ivanti Secure Access Client Supported Platforms Guide for any additional updates.
Ivanti Secure Access Client goes beyond traditional VPN access by delivering centrally managed, identity‑ and context‑aware connectivity.
Unlike basic VPN clients that provide broad network access, Secure Access Client continuously evaluates user identity, device posture, and security context to enforce policy‑driven, least‑privilege access. It integrates endpoint posture assessment and real-time compliance checks to help ensure only trusted users and devices gain access to protected resources.
Endpoint posture assessment is a critical zero trust security capability that continuously evaluates the security health and compliance status of devices before and during network access.
Ivanti Secure Access Client implements comprehensive endpoint security posture assessments for both mobile and desktop computing devices, enabling organizations to enforce security policies dynamically based on real-time device conditions. Secure Client Access provides stateful endpoint integrity and assessment with easy policy definitions for Windows, macOS, iOS and Android devices.
The client evaluates multiple security factors to determine device compliance:
When non-compliant devices are identified, Ivanti Secure Access Client can block access completely, grant limited access to remediation resources only, trigger automated remediation workflows or provide user notifications with step-by-step instructions to address the issue.
Yes, Ivanti Secure Access Client offers extensive integration capabilities with existing identity providers (IdPs) and identity and access management (IAM) systems, enabling organizations to use their current authentication infrastructure while enhancing security.
Ivanti Secure Access Client supports standards-based SAML v2.0 single-sign-on with major enterprise identity providers like Okta, OneLogin and Ping Identity, as well as OAuth/OpenID. It also features connecting protocols for integration with Google, Azure AD, and similar services. Additional features include PKI/digital certificates for strong, passwordless authentication and LDAP/Active Directory for centralized user management.
Ivanti Secure Access Client is the unifying client included with Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons for Zero Trust Access. Organizations purchasing one of the products automatically receive Ivanti Secure Access Client access. There is no charge for the client.
Ivanti Secure Access Client delivers comprehensive security protections beyond traditional VPNs. Secure Access Client provides dual-transport Layer 3 VPN with granular access control. Desktop clients are NIST/FIPS certified (Cert #4282). Mobile clients use Cert #1938. With Zero Trust Access, Ivanti Secure Access Client creates per-application mTLS tunnels that minimize your attack surface.
Secure Access Client implements least-privilege access with fine-grained policies based on identity, device posture and location to prevent lateral attacks. It continuously verifies identities and device posture throughout sessions. Additional protections include dynamic policy enforcement, endpoint assessment blocking non-compliant devices, automated remediation, UEBA threat detection, TPM boot integrity, privilege restriction and split tunneling preventing data exfiltration.
Ready to improve your security for employee access to corporate networks?