Most organizations have been tasked to reduce or eliminate the corporate datacenter. This migration is occurring in an effort to become cloud-first in order to reduce costs and operational overhead. The migration from hosting applications on infrastructure to consuming those same applications in the cloud not only is more efficient, it enables organizations to work faster and be more productive by getting the benefits of SaaS, without worrying about the infrastructure overhead.
With these data center reduction efforts, server and network infrastructure must be eliminated or migrated to cloud services. Some of those services will move to cloud infrastructure providers while others will be transformed to SaaS applications. Within the datacenter, there are likely a lot of network security appliances, including proxies, to protect end users and servers. These network security appliances were designed to protect fixed servers which are disappearing and end users which are leaving the office. However, the need to protect end user connections has never been greater or more difficult, given the users are working on untrusted networks, consuming a lot of bandwidth and working from home.
The iboss cloud platform is the SaaS equivalent of the network security infrastructure and appliances, such as proxies, with the same features and capabilities delivered without appliances and completely in the cloud. This allows end users to connect quickly to cloud applications and resources while providing network and security administrators the ability to protect those connections from phishing, malware and data loss. Since the iboss cloud platform runs in the cloud, it scales infinitely as bandwidth and cloud application consumption increases, without increasing costs.
The migration may also take some time. And some servers and on-prem IoT infrastructure may remain during and even after the migration. Heavily changing the network topology for some aspects of the network may not be feasible and must be taken into account during this migration.
The iboss cloud provides the same capabilities found in advanced proxies and next-gen firewalls as a SaaS service, delivered in the cloud. It is designed for both the network and security teams and meets the requirements of both fast connectivity while providing security to connections while users are in the office or working from home. It scales infinitely as it runs in the cloud, giving it the capacity to inspect and protect an infinite amount of bandwidth, including decryption, without increasing costs. And, it eliminates the network security appliances from the data center helping to achieve cloud first initiatives.
The iboss cloud platform runs in the cloud, as a SaaS offering, with all of the capabilities found in advanced proxies and the security features found in next-gen firewalls. The iboss platform is built on a containerized architecture which guarantees that any feature that can be delivered with network security appliances, can be delivered with infinite horizontal scaling in the cloud. It can be used to completely decommission on-prem proxy appliances and turn off next-gen security features in the firewall as those same features can be delivered instantly, and at scale, in the cloud.
To leverage the iboss cloud platform, first route network data through the iboss cloud service. This can be achieved using a variety of methods with the most flexibility on the market. For example, GRE or IPSec tunnels can be created from the offices to the service to automatically route network data headed to the cloud through the iboss cloud platform first. Private cloud containerized gateway appliances can be dropped in the place of legacy proxy appliances without changing network topology, authentication, or existing data redirection techniques. Unlike legacy proxy appliances, the private cloud containerized gateway appliances are completely managed by the cloud service and treated as another data center linking to the global iboss cloud SASE footprint. Network data is processed within the containerized private cloud gateways and sent directly to the cloud, eliminating any extra hops. This is ideal for large sites or locations where changing network topology is highly restrictive. In addition, since the private cloud containerized gateway appliances are linked to the global SASE footprint, a consistent global policy can be applied across the organizations, from infrastructure to remote users.
The iboss platform is natively integrated with Microsoft Office 365. As a zero-trust SASE platform, the iboss cloud platform can grant or deny access to cloud resources based on user context by connecting user security groups and OUs from Azure ADFS automatically. The built-in iboss cloud CASB visibility can be tied to Microsoft Cloud App Security, so that policies configured in MCAS automatically sync to the inline data path protected by iboss. Logs generated from a remote work force can be connected with Sentinel to provide more visibility and context to security admins. Any infrastructure running the Azure cloud can have their connections automatically secured by the iboss platform with a few clicks without ever deploying a virtual firewall providing true, complete SaaS network security. The following shows how iboss provides the “centerpiece” for any Microsoft Office 365 strategy, by providing the fastest and most secure connection to the cloud and to the Microsoft Office 365 suite.