Security concepts

Defguard's fundamental secure processes:

  • Secure remote user enrollment (self-service)

  • User self-service to manage their own data, change passwords, add/remove VPN devices, connect securely to networks

  • For administrators to easily setup, manage and monitor multiple VPN networks (with access control) to provide a secure connection to applications that should not be visible on the internet

  • Deploy an Identity Provider to have one place to manage all users

  • That Identity Provider should provide SSO functionality to enable users to log in to all systems with one login/password

    • Have 2FA/MFA functionality to harden security

  • Setup YubiKey Hardware keys to enable the best 2FA security, secure SSH login with private keys on a secure hardware

  • Integrate all your systems with API, and Webhooks (to access Defguard functionalities or users' data)

Last updated

Was this helpful?