Platform
Critical Capabilities
- Security, Authorization & Access Controls
  Provides CASB, Malware Defense and DLP Across All Users, Devices & Resources
  - Secure Access Service Edge
    The most advanced SASE and Zero Trust platform that allows users to work from anywhere with fast and secure connections to all applications
  - Adaptive Access Policies
    Provides Continuous Conditional Access to Apps, Data & Services
  - Criteria-Based Access Policies
    Provides Role-Based Access to Sensitive Apps & Data
  - ChatGPT Risk Module
    Monitors and Secures User ChatGPT Conversations
  - Malware Defense
    Prevents Ransomware & Device Infections
  - Data Loss Prevention
    Ensures Sensitive Information is not Lost
  - RBI and Browser Isolation
    Provides Contractors, 3rd Parties & BYOD Secure Access to Resources
  - Device Posture Checks
    Including Anti-malware, Firewall & Disk Encryption for Compliance
  - SSL Decryption
    Ensures Policies & Protection Apply to Encrypted Content
  - Secure Mobile Users
    Automatically & Transparently Secure All Traffic From Devices In & Out of the Office
  - Outbound Firewall Protection
    Extends Beyond the Physical Network Perimeter
  - DNS Security
    Quickly Secures BYOD Networks with Simple Configuration
- Application & Data Discovery
  Clearly Understand What Needs Protection
  - CASB
    Provides In-App Controls for Granular Access Decisions
  - Built-in Resource Catalog
    Enables Classification of Protected Apps and Services
  - Asset & Device Catalog
    Ensures Devices are Healthy, Compliant & Secure
  - Resource Labeling by Type & Security Objective
    Enables Risk Assessments and Understanding Business Impact of Sensitive Resources
  - Automatic Resource Discovery & Classification
    Reduces Overhead on Security Teams and Identifies Shadow IT
- Federated Identity Provider Integration
  Eliminates Unauthorized Users and Provides Role-Based Access Policies
  - SSO Identity Providers
    Integrates with Identity Providers Including Azure AD, Okta, Ping, SAML, OIDC
  - Step-Up Authentication
    Ensures the Right Level of Identity Confidence When Accessing Sensitive Resources
  - Group-Based Policies
    Leverage Okta, Azure AD and SAML Providers to Simplify Creation & Management of Security Policies
  - SSO for Legacy Apps
    Ensures Modern Authentication is Performed Even When Apps Do Not Support It
  - Supports Multiple Concurrent Identity Providers
    Authenticate Users Across Multiple Domains
- Alerting, Auditing, Logging & Reporting
  Provides In-Depth Detailed Visibility For Security Teams Across All Users, Devices & Transactions
  - Detailed Logging and Reporting
    Provides Visibility for Every Resource Transaction
  - Risk & Threat Reports
    List Infected Devices & High Risk Users
  - Digital Experience Management
    Provides Insights Into End-user Experience While Leveraging Business-critical SaaS Applications
  - Next-Gen Incident Dashboard
    Monitor and Instantly Address Security Threats
  - ChatGPT Risk Module
    Controlled Use of ChatGPT With Security and Monitoring
  - SIEM Integration
    Ensures Logs Are Copied to External Databases
  - Splunk Enterprise Security Add-On
    Automatically Populate Your Splunk Dashboards With Valuable Data
  - Integrates with Your Security Stack
    Including ICAP, Proxy Chaining and Log Forwarding
- Cloud Security & Connectivity
  Easily Protect Apps & Data Across SaaS, Cloud & Datacenters
  - iboss Zero Trust SD-WAN
    Streamline Connectivity & Security with iboss Zero Trust SD-WAN
  - Azure Cloud Security Gateways
    Extend the Security Edge Natively, Ensuring Robust Protection While Reducing Backhauling Costs
  - iboss ZTNA VPN Co-Pilot
    Provides a Transparent and Seamless Transition From VPN to ZTNA
  - Connect Organization Owned Devices
    Provides Access & Ensures Compliance Checks
  - Connect SaaS Apps
    Including O365 & Teams to Offload Overloaded On-Prem Proxies
  - Connect Cloud Providers
    Including AWS & Azure to Protect Multi-Cloud Resources
  - Connect On-Prem Resources
    Within Datacenters with Drop-In Proxy Replacements Eliminating High Renewal Costs
  - Terminal Server Protection
    With Unique Policies & Logging for Each User
  - IPsec & GRE Tunnels
    Provides Branch Office Local Internet Breakouts to Cloud Security
  - Private On-Prem Gateways
    Extends the Security Service Edge into the Datacenter to Protect Local Resources
  - Offload MPLS
    MPLS & SD-WAN Become More Efficient with Cloud Security
  - Dedicated Cloud IPs
    Enable Resource Anchoring to Ensure Proper Authorization & Third-Party Integration
Industry
- Mitie Switches to iboss For Fast and Secure Connections
  Mitie, a Global Provider of Smart Spaces, successfully migrates 8,500 devices from Zscaler to iboss in under 3 weeks.
  View Case study
- Business
  - Private Access VPN Replacement
    Replace VPN with Zero Trust Network Access allowing users to connect to private applications from anywhere
  - Cloud-Based Branch Office Web Security
    Eliminate data backhaul to on-prem appliances from remote offices
  - Microsoft 365 Features & Integration
    Native Microsoft integrations including Office 365, Microsoft Cloud App Security CASB and Azure
  - Stream Cloud Logs to Any External SIEM
    Gain visibility into web activity by streaming real-time log events directly from iboss cloud to your existing logging database or SIEM
  - Ensure GDPR Compliance
    The iboss cloud allows admin configurable zones to ensure cloud security is applied while meeting regulatory requirements
- Healthcare
  - For Healthcare
    Fast and Secure Connectivity from Anywhere, Designed for Healthcare
  - Secure Access Service Edge
    The most advanced SASE and Zero Trust platform that allows users to work from anywhere with fast and secure connections to all cloud applications
  - Private Access VPN Replacement
    Replace VPN with Zero Trust Network Access allowing users to connect to private applications from anywhere
  - Microsoft 365 Features & Integration
    Native Microsoft integrations including Office 365, Microsoft Cloud App Security CASB and Azure
  - Stream Cloud Logs to External SIEM
    Gain visibility into web activity by streaming real-time log events directly from iboss cloud to your existing logging database or SIEM
  - Integrates with your existing security stack
    Easily integrate iboss cloud with your existing workflows using a 100% open API
  - Terminal Server Protection in the Cloud
    User based policies and reporting for Windows Terminal Servers
  - Make MPLS and SD-WAN More Efficient with Cloud Security
    Send internet traffic directly to the cloud from branch offices to alleviate this load from private site-to-site connections
  - Data Loss Prevention
    Secure sensitive data with data loss prevention
- Finance
  - For Finance
    Fast and Secure Connectivity from Anywhere, Designed for Financial Institutions
  - Secure Access Service Edge
    The most advanced SASE and Zero Trust platform that allows users to work from anywhere with fast and secure connections to all cloud applications
  - Private Access VPN Replacement
    Replace VPN with Zero Trust Network Access allowing users to connect to private applications from anywhere
  - Microsoft 365 Features & Integration
    Native Microsoft integrations including Office 365, Microsoft Cloud App Security CASB and Azure
  - Stream Cloud Logs to External SIEM
    Gain visibility into web activity by streaming real-time log events directly from iboss cloud to your existing logging database or SIEM
  - Integrates with your existing security stack
    Easily integrate iboss cloud with your existing workflows using a 100% open API
  - Terminal Server Protection in the Cloud
    User based policies and reporting for Windows Terminal Servers
  - Make MPLS and SD-WAN More Efficient with Cloud Security
    Send internet traffic directly to the cloud from branch offices to alleviate this load from private site-to-site connections
  - Data Loss Prevention
    Secure sensitive data with data loss prevention
- Education
  - Student Risk Module Identifies Threats
    Safeguard Student Risk to monitor signs of cheating, suicide, drug use, bullying, violence, and mass shootings, to protect students & schools
  - Web Filtering for CIPA Compliance
    Streamline web filtering and CIPA compliance for students whether on campus or at home
  - Granular Student Web Activity Reports
    Generate detailed web activity history reports for any student which includes on-campus at home Internet use
  - YouTube and Social Media Controls
    Safe access to Google, YouTube and social media including Safe Search enforcement
  - Automatic Safe Search Enforcement
    Enforce Safe Search across search engines including Google, Bing, Yahoo and YouTube
  - Create Teacher and Student Based Policies
    Flexible filtering polices for teachers vs. students across any device on or off network
  - Cloud Web Security for One to One Initiatives
    Easily take home devices in the cloud to ensure CIPA compliance at all times
  - Ensure Fast Connections During State Testing
    Achieve seamless and uninterrupted state testing
  - iboss Classroom Management
    Visually monitor the activities of all of your students, from any location
  - iboss Parent Portal
    Empower Parents and Protect Students with the iboss Parent Portal
- Government
  - For Government
    Fast and Secure Connectivity from Anywhere, Designed for Government
  - Secure Access Service Edge
    The most advanced SASE and Zero Trust platform that allows users to work from anywhere with fast and secure connections to all cloud applications
  - Complete Data Isolation & Extensible Platform for Government Entities
    The best choice for government entities for fast and secure connections for users from anywhere with a SASE platform that completely isolates network data traffic
  - Private Access VPN Replacement
    Replace VPN with Zero Trust Network Access allowing users to connect to private applications from anywhere
  - Microsoft 365 Features & Integration
    Native Microsoft integrations including Office 365, Microsoft Cloud App Security CASB and Azure
  - Stream Cloud Logs to External SIEM
    Gain visibility into web activity by streaming real-time log events directly from iboss cloud to your existing logging database or SIEM
  - Integrates with your existing security stack
    Easily integrate iboss cloud with your existing workflows using a 100% open API
  - Terminal Server Protection in the Cloud
    User based policies and reporting for Windows Terminal Servers
  - Data Loss Prevention
    Secure sensitive data with data loss prevention
Resources
- Award Winning Cloud Security Platform
  The iboss Zero Trust Secure Access Service Edge is consistently recognized as an industry leader in cloud security. Our patented containerized cloud architecture ensures secure, fast and reliable connectivity to cloud applications from any device, from any location.
  View Awards & Recognition
- anchor
  - Cloud Data Centers
    View Global Cloud Points of Presence that deliver the iboss Zero Trust SASE
  - Cloud Status
    View real time status of the global Zero Trust Security Service Edge
  - News
    See iboss in the latest news
  - Blog
    Latest insights on Zero Trust Security Topics
  - Events
    Join us for upcoming events
  - Solution Briefs
    Detailed solution briefs covering iboss Zero Trust Security Use Cases
  - Reviews
    Recognized by industry experts as the leading Zero Trust Security Platform
  - Case Studies
    Learn how the iboss platform has been leveraged by leading organizations around the world
  - Cloud Compliance
    The iboss global cloud fabric meets industry standards and certifications, including SOC1, SOC2 and ISO compliance
  - Patents
    The iboss platform is protected by over 250 issued and pending patents
  - Demo Videos
    View videos and demos of the iboss Zero Trust Platform
  - Awards
    The most award winning Zero Trust Security Service Edge
  - Careers
    Join the iboss team
Partners
Get Demo
Get Pricing

Azure Cloud Security Gateways

Download Solution Brief DOWNLOAD PDF

The iboss Zero Trust SASE seamlessly integrates with Azure, with the next generation of Azure Cloud Security Gateways. This capability extends the security edge of iboss directly into Azure, ensuring efficient cloud security, logging, and robustness in malware defense, DLP, and adaptive access, all under a singular cloud admin console. Easily and securely connect remote users to private Azure Virtual Desktop, protect Azure infrastructure with iboss gateways hosted directly within customer-managed vnets, and connect Azure services across vnets with iboss gateways directly in Azure.

The iboss Azure Cloud Security Gateways offers an unparalleled fusion of protection and flexibility. By harnessing iboss’s unique containerized architecture, the security edge is extended natively into Azure private networks. Not only does this encompass comprehensive security capabilities ranging from CASB to malware defense and DLP, but it also guarantees unified policy management from the singular iboss cloud admin console that governs all user locations and access points.

The iboss gateways run directly with Azure and provide remote users with secure and direct access to private Azure resources, such as Azure Virtual Desktop. The Azure hosted gateways also provide security for Azure hosted infrastructure and services in addition to providing vnet to vnet connectivity.

This revolutionary capability provide the priceless advantage of running directly within customer-managed virtual networks, ensuring proximity to safeguarded resources and compliance with network policies set by the customer. The capability of direct HTTPS decryption and logging within Azure eliminates redundant data backhauling to data centers. The outcome results in a tangible reduction in costs, latency, and a performance boost. Furthermore, the gateway’s swift and automatic configuration and deployment simplify processes, streamlining time-to-value while allowing effective utilization of Azure investments.

Benefits

Easily and securely connects users to Azure Virtual Desktop
Provides isolated and agentless access to Azure resources for contractors and guests
Provides cloud infrastructure security directly within Azure
Provides CASB, malware defense, DLP policies, adaptive access, and logging in Azure
Provides resources in Azure vnets with no public routes secure access out of Azure
Provides secure vnet to vnet connectivity with logging within Azure

How it Works

Users and devices are connected to the iboss Zero Trust SASE cloud security platform, which provides access, security, and logging visibility for all transactions to all resources.
As users interact with resources, the iboss Zero Trust SASE continuously measures connection metrics, including DNS and connection response times.
Because the iboss Zero Trust SASE provides per-request access decisions and visibility, each transaction is associated with timing and latency metrics.
The Digital Experience Management Add-On leverages timing metrics between users, devices, and resources to provide insight into the app, user, and device connection performance and experience.
The dashboards provide latency and timing for apps, users, and devices, including timing between specific users and devices to applications.
Users and devices with slower or high latency connections relative to their peers are identified and highlighted.

Ordering Information

SKU: iboss Zero Trust Edge – Available Directly in the Azure Marketplace
Required Package: Zero Trust Core or Higher

Download PDF

Frequently Asked Questions

What is the iboss Azure Cloud Security Gateways solution?

The iboss Azure Cloud Security Gateways is a capability that integrates the iboss Zero Trust SASE directly with Azure. It extends the security edge of iboss into Azure, allowing for efficient cloud security, logging, and robust defenses against threats, all managed from a unified cloud admin console.

How does the iboss solution integrate with Azure?

Through native integration, the iboss security edge is extended directly into Azure’s private networks. This means all the advanced security capabilities, ranging from CASB to malware defense and DLP, are now available natively within Azure environments.

What challenges do the iboss Azure Cloud Security Gateways address for network teams?

For network teams looking to connect users to private Azure resources that aren’t directly accessible to the public, our solution simplifies this process. Organizations can also reduce data center costs and complexity by eliminating data backhaul from Azure to data centers for security and logging by directly delivering security and logging within Azure, which is typically provided by firewalls and proxy appliances.

How does the solution benefit security teams, especially in regulated industries?

Security teams in highly regulated industries can ensure compliance and secure Azure resources without deploying traditional firewall appliances. The iboss solution provides the necessary security directly within Azure, accommodating the cloud-based nature of Azure resources.

How does this solution impact Azure Virtual Desktop users and contractors?

The iboss gateways within Azure broker connections from remote users to private infrastructure hosted within Azure, like the Azure Virtual Desktop. For enterprise users, staff, or contractors, connections are secure, authenticated, and logged, ensuring access is convenient and safe.

How does the iboss solution ensure local security for Azure-hosted infrastructure and services?

The iboss gateways within Azure deliver security directly within the vnet. This localized approach ensures that Azure-hosted infrastructure and services, including those without direct internet routes, are secure and logged.

How does the iboss solution handle Azure vnet-to-vnet communication and protection?

The gateways within Azure come equipped with a Zero Trust continuous adaptive access connectivity stack. This ensures resources within one Azure vnet can communicate securely with resources in another Azure vnet through iboss gateways, all while maintaining security and logging standards.

How is the solution deployed, and what is the time-to-value?

The deployment is entirely automatic, requiring no manual configuration. As a result, the system is operational within minutes, reducing complexity and speeding up time-to-value.

What benefits does the iboss solution bring in terms of costs and latency?

Providing direct HTTPS decryption and logging within Azure eliminates redundant data backhauling to data centers. This directly translates to reductions in costs and latency and improves performance.

Who should consider the iboss Azure Cloud Security Gateways solution?

Any organization that leverages Azure, including those from highly regulated industries like finance, healthcare, energy, and insurance, and particularly those where the Network and Security Teams seek to protect Azure resources and connect users securely to private Azure resources while maintaining strict compliance and security standards.