Cloud-managed secure network access
LANCOM Trusted Access is the trusted network access security solution for enterprise networks. It enables secure and scalable access to enterprise applications for employees in the office, at home, or on the road, protecting modern hybrid working from anywhere, anytime. The LANCOM Trusted Access solution adapts to increasing security requirements in your organization and enables both cloud-managed VPN client networking for access to entire networks and the move to a Zero Trust security architecture for comprehensive network security. Based on granular access rights, users are only granted access to applications that have been assigned to them (Zero Trust principle). Existing systems for managing users and user groups (Active Directory) can be fully integrated into the LANCOM Management Cloud (LMC). For smaller networks, the LMC alternatively offers internal user management. LANCOM Trusted Access 100% GDPR compliant and scales for small businesses as well as for very large networks with several thousand users.
Granular access control to applications according to the Zero Trust principle
With access granted according to the Zero Trust principle “as much as necessary, as little as as possible“, the LANCOM Trusted Access Client protects networks from threats and their spread. This means: No blind trust based on successful network
access. The LANCOM Trusted Access Client allows access controls to be implemented at a very granular level (“software-defined perimeter“, SDP). This means that users can only access the applications and resources they need to perform their work, and that each access must be explicitly authorized.
Network security tailored to your needs
Switching from classic VPN clients to a zero-trust model usually means a costly complete rebuild of a network‘s entire security architecture. However, this is not the case with LANCOM Trusted Access. LANCOM Trusted Access allows a direct transition to a Zero Trust security architecture, because this solution grows with your security requirements. Whether you need cloud-managed VPN client networking for wide-ranging network access or want to take the step to a comprehensive Zero Trust security architecture, LANCOM Trusted Access offers exactly the right configuration levels.
Usage as a cloud-managed VPN client
The LANCOM Trusted Access Client can optionally also be used as a cloud-managed VPN client, thus enabling the VPN connections of mobile employees to be managed securely and centrally. This means that configuration updates can be carried out easily and efficiently, or new users can be added or removed simply, without the need for an IT administrator or the end device to be physically on site. This convenient management coupled with transparent user monitoring via the LANCOM Management Cloud reduces your operating costs, as all of your company‘s VPN clients are centrally accessible at a glance.
Trusted Internet Access: Mobile working as secure as in the office
With LANCOM Trusted Access (LTA), you can manage access rights and network connections for mobile employees securely and centrally via the LANCOM Management Cloud. Mobile users are always allowed normal Internet traffic (Split Tunnel). To additionally secure the entire Internet traffic of connected LTA clients, activate ‘Full Tunnel’ operation. This means that all data traffic is routed through the central LTA gateway (Unified Firewall or SD-WAN gateway). The advantage: Risks from unauthorized access, malware, phishing and other cyber attacks are minimized and can also be checked for external web/cloud-based applications via activated security functions on the gateway such as anti-virus or content filters. We call this operating mode ‘Trusted Internet Access’.
Endpoint security and multi-factor authentication
Before a user is granted access, endpoint security can be verified (operating system version, anti-virus, local firewall). Each user must also have their identity verified before being granted access to an application or resource. Applications and resources are not made visible network-wide, making the network invisible to attackers. Additionally, two-factor or multi-factor authentication with fingerprint, facial recognition, or an authentication app on the smartphone may be required at login.
Integration of existing user databases
User authentication is performed via a central user database (“identity provider“, e.g. an Active Directory such as Microsoft Entra ID (formerly Azure AD)). User groups taken over from the identity provider can be provided with individual access rights to the permitted applications. The validity period of an authentication can be set, and clients can also be blocked manually or automatically. For small companies without a central user database, user management integrated into the LANCOM Management Cloud is available as an alternative.
Seamless integration into the LANCOM Management Cloud
The LANCOM Management Cloud (LMC) provides fully integrated management of all LANCOM network components (routers / gateways, firewalls, switches, and access points) including the LANCOM Trusted Access Client. The management of the underlying security policies for all users in the network is also carried out centrally via the LMC. A LANCOM Trusted Access Real-Time Dashboard is available to administrators for comprehensive diagnostics and troubleshooting. The dashboard displays active connections with user name, IP address, device name, and user group, and provides additional information such as compliance status and last login. Furthermore, clients can be blocked both manually and automatically, information on the number of users and blocked connection requests is available, as well as central license management and monitoring.
Access to external cloud applications via single sign-on (SSO)
The LANCOM Trusted Access Client handles the login processes for passwordprotected applications: Via single sign-on (SSO), users can access external web applications conveniently and securely after logging on once to the Active Directory – without having to re-enter their credentials. This ensures particularly user-friendly and fast work processes.
100% Digital Sovereignty, 100% GDPR compliant
The LANCOM Trusted Access Client and the LANCOM Management Cloud (LMC) are developed in Germany, and all cloud data is also hosted in data centers in Germany. Only the data exchange for user authentication takes place via the LMC; all other user data runs directly between the LANCOM Trusted Access Client and the LANCOM Trusted Access Gateway – without decoupling via an external cloud. The LANCOM Trusted Access Client thus stands for the highest level of data security and data protection. It is subject to and complies with European legal standards, is therefore DSGVO compliant, and is a convincing IT security solution engineered in Germany. More information: License | Type | Network management |  | Software type | License | | License quantity | 1 license(s) | | Number of years | 1 year(s) | Features | Compatibility | LANCOM Trusted Access |
|