This case study examines a company that provides a cloud-based platform for geospatial analytics. They are a remote-friendly company and hire the top talent from all across the United States. The work they do is sensitive, and the company name will be kept anonymous so that it does not become public knowledge what security solutions they use. By remaining anonymous, they reduce the risk of someone trying to break through the security measures that they have in place.
The company needed to provide secure access over the Public Internet to important internal resources — but the number of employees requiring remote access had grown substantially, and their existing process of whitelisting IP addresses was no longer sustainable. The company needed a new solution for its entire remote workforce, that would allow simplified access control and management.
OpenVPN Access Server provided the company with a robust VPN solution that enabled remote employees to securely access private company resources. The company then used the easy to install Amazon Machine Image to deploy Access Server within the Amazon Web Services Virtual Private Cloud that housed the other internal servers. Then they set up AWS Security Groups for those servers to limit incoming traffic to privileged ports from the Access Server.
To authenticate the employees with privileged access, they interfaced OpenVPN Access Server with their identity directory using RADIUS, and they implemented multi-factor authentication (MFA) by connecting to their MFA provider over RADIUS.
With the Access Server solution in place, employees access their applications securely from office or home — and the security administrators no longer manage cumbersome IP whitelists. By investing in OpenVPN Access Server, the company provides a secure remote access solution for its employees, with simple, effective management tools.
“If you need a secure and easily configurable VPN for your company, start your search with OpenVPN.” – Company Software Engineer and Security Specialist
For several years, the company invested in a Windows-based VPN server solution. The solution was not customizable, and it could not be integrated with their Active Directory — which meant there was no easy way to manage the individual users on their team of 200 employees.
“We used to use a modem connection, but it was very slow and had a lot of security and connectivity problems. We needed a better and stronger connection to allow the company to grow.”
The company needed a better way to securely share access to its Communication Server with its clients — that was easier to set up, use, and configure, while delivering the must-have privacy and security for their confidential work.