ZTNA Hub
AIONCLOUD ZTNA Overview
ZTNA (Zero Trust Network Access) is a security framework that provides secure, segmented access to applications and resources by verifying every user and device, regardless of location, using the "never trust, always verify" principle of zero trust security. Unlike VPNs that grant broad network access, ZTNA uses granular, policy-based controls to give users access only to the specific applications they need, reducing the attack surface and strengthening security against evolving threats.
The ZTNA menu consists of 3 sections: Tunnel, Access Control, and Access Policy.
Tunnels are used to configure access to the business application servers that are to be routed through the AIONCLOUD system. It consists of the Server and Gateway submenus. For further information on how to configure this, please refer to the AIConnector Guide for Servers.
Access Control, along with Access Policy are designed to control the access of users to the ZTNA servers and gateways that are setup through the Tunnels section. This is done by creating Access Control policies that, by default BLOCK all access other than the users specified in the Access Control (if no Policy is applied), or for more advanced control, apply an Access Policy.
Access Policy is used to create more flexible access policies to apply to the Access Control rules from the previous section. Where the Access Control is limited to only users, the Access Policies can utilize a combination of IP addresses, Time, Geolocation, browsers and operating system to create more complex conditional rules to allow or block users from accessing ZTNA tunnels.