Another key difference between the two VPNs is that an IPsec VPN connects a client, or workstation, to a network. An SSL VPN connects an individual user to an application. The SSL VPN can be finely tuned to only allow outside vendors and consultants access to specific applications, rather than the whole network.
Two well-known vendors of SSL VPNs are Juniper Networks Inc. and Aventail Corp.
Alternatively, you could set the group policy objects (GPO) within Active Directory for outsiders logging in. GPOs can be set to limit specific users' access to network resources, while allowing access to specific files containing the applications they need.
Either approach -- the SSL VPN or setting the GPOs -- can provide you limited access requirements.
This was first published in December 2006