Skip to main content
Cisco Meraki Documentation

Cisco Secure Connect - Features

Learn more with these free online training courses on the Meraki Learning Hub:

Sign in with your Cisco SSO or create a free account to start training.

Features and Benefits:  




Native Meraki SD-WAN  Integration 


Easily connect your branch sites to Cisco+ Secure Connect with the built-in Native Meraki SD-WAN Integration for access to internet, SaaS and private applications. Leveraging the Auto VPN capability of your Meraki Secure SD-WAN Appliance at your branch sites for connectivity to the SASE fabric provides increased resiliency and intelligent path selection. This also enables the organization to implement consistent access and security controls across all connected sites. 


Clientless Zero Trust Network Access (ZTNA) 



Cisco+ Secure Connect enables least privileged access control to private applications without requiring any agent or client installed on the endpoint device. Administrators can easily assign access privileges for contractors and employees only to resources they need access to, without any lateral move capability. Administrators can configure posture profiles for endpoint OS type and version, browser type and version and geo-location information to be used in the access decision.     


Client Based Secure Remote Work  



Cisco+ Secure Connect enables remote users to access private applications from anywhere through the Cisco+ Secure Connect fabric using a Cisco Secure client. Zero Trust is built into the cloud-native remote access service as a default, with identity based access control using SAML authentication through the customer’s IdP (Identity Provider). Endpoint posture is also evaluated, enables granular access control to private resources. 


Secure Internet Access 


Secure Internet Access provides safe access to the internet anywhere users go, even when they are off the VPN. Before the user is connected to any destination, Cisco+ Secure Connect acts as your secure onramp to the internet and provides the first line of defense and inspection with hybrid protection on the edge and in the cloud. Regardless of where users are located or what they’re trying to connect to, traffic can go through the fabric first. Once the traffic gets to the cloud platform, there are different types of inspection and policy enforcement that can happen, based on the security needs of the traffic.  

Cisco+ Secure Connect includes cloud-based cloud based security services such as: Secure web gateway, cloud-delivered firewall, DNS-layer security, cloud access security broker (CASB), and data loss prevention. This robust security solution receives real-time proactive threat updates from Cisco Talos Intelligence, keeping your users secure while alleviating your IT Team from this tedious process. 


User Authentication 





Cisco+ Secure Connect enables customers to either bring their own SAML provider for end-user authentication to the service or use the bundled cloud identity platform for easy configuration of users and quick onboarding of the service. Cloud identity capability can be leveraged by customers who don’t have a SAML IdP configured or don’t want to use their existing SAML IdP for the user authentication to access the service. The cloud identity capability can be configured through a few easy steps from the Cisco+ Secure Connect dashboard or existing Meraki Cloud authentication configuration can be simply applied to the service with a single click.   


Unified Management 





 The Cisco+ Secure Connect management is handled through a single dashboard to configure, monitor, and troubleshoot the service. Configuration is simplified with guided flows and dynamic checklists. Monitoring of Users and Sites occurs in a single pane of glass which unifies security and connectivity indicators.   


Network Interconnect 





Network Interconnect provides intelligent routing between sources and destinations connected to Cisco+ Secure Connect. Any node connected to the Interconnect seamlessly gains access to any already-connected node, pending access policy- enforced in a hybrid way cross the edge and the cloud fabric. This drastically reduces the network complexity, providing a highly available network fabric with minimal setup and maintenance. 


  • Was this article helpful?