Cisco+ Secure Connect - Defining Private Applications
Defining a Private Application
A private application is an application that is hosted on within a private datacenter or private cloud. Cisco+ Secure Connect enables organizations to provide secure policy-based access to this application via network based access (VPN) or via browser-based access (ZTNA).
Secure Connect Dashboard:
Configuration Steps
-
From the Secure Connect menu, navigate to Configure->Private Applications
-
Look to the upper right-hand corner, and choose Add App
-
Give your application a good descriptive Name and Description
-
Select Network Based Access and/or Browser Based Access based on how the application will be accessed
Network-Based Access
- Enter in an IP address or CIDR and specify the protocol and port.
- Click
to add additional entries if needed
App Definition for NAP:
-
Name of the application
-
Description (optional)
-
Enable the Network-based access option
-
Enter the IP address and port information
-
Select the protocol HTTP/HTTPS
-
Save!
Browser-Based Access
- Enter in an IP address and select the Port.
- If applicable, specify the Protocol, Server Name Indication (SNI), and enable/disable certificate validation (enabled is the default).
-
Name of the application
-
Description (optional)
-
Enable the Browser-based access option
-
Enter the IP address and port information
-
Select the protocol HTTP/HTTPS
-
SNI (Server Name Indication) field (optional) - this is the SNI field the proxy should use while connecting to the private application
-
Enable/Disable the application certificate - Proxy should validate the application certificate or not while connecting to the application.
-
Click on Generate for the External URL - this is the URL you can use to access the application.
-
Save!
Note: Validate Application Certificate - If the application is configured to use HTTPS, this toggle tells the proxy to validate the certificate presented by the application web server (with public Root CAs) or don't validate it and just accept any certificate
-
Scroll down to add the application to an Application Group (optional)
Next Steps:
For additional information on network-based access policy rules, see Private Access Policies Configuration
For additional information on browser-based access policy rules, see Manage Browser Access Policy