Restrict Unauthorized Access with Device Identity Verification

CloudConnexa’s Device Identity Verification Enforcement (DIVE) further strengthens your network security by preventing a device’s cryptographic identity from being transferred to an unauthorized device.

Start Now for Free Request a Demo

Strengthen your ZTNA framework with a security policy around device identity

DIVE locks device profiles to their hardware identity, preventing authorized users from using their connection profiles — containing the digital certificate — to access your private network from high-risk devices. During attempts to connect or obtain configuration profiles, DIVE validates the device's unique UUID to verify that the digital certificate belongs to it, ensuring that only authorized devices can connect to your WPC.

Extend least privilege from users to devices to minimize your attack surface

DIVE reduces your attack surface by proactively assessing that the cryptographic identity (digital certificate) is not compromised and belongs to the authorized device.

Lock down devices automatically

Automatically bind a user's connection profile to their unique device UUID upon first connection for effortless security – just set and forget.

Advance your ZTNA framework

Enable DIVE alongside Device Posture and Location Context policies, app micro-segmentation, and more to enforce least privilege accesss.

Secure every endpoint in your organization

DIVE is natively supported by the OpenVPN client for Windows, macOS, Linux, Android, and iOS, ensuring comprehensive protection across all your devices.

Ensure device compliance for remote access

Ensure that remote users can only connect from managed, company-issued devices to enforce compliance with your security standards.

Reduce the risk of compromised devices

Stay one step ahead of bad actors by ensuring that a compromised profile cannot connect without the authorized device.

FAQs

If you have any difficulties, we have collected all of the useful materials for this product in our video library, tutorials, and documentation. You can also browse CloudConnexa's features.

DIVE (Device Identity Verification & Enforcement) is a critical component of the Zero Trust Network Access (ZTNA) security model, specifically reinforcing the principle of 'Never Trust, Always Verify.' It extends security beyond user credentials by locking the user's connection profile to their device's unique identifier (UUID). This means that even if both the valid profile AND credentials are stolen, a hacker will not be able to connect from an unauthorized endpoint because the profile has been locked to a specific, authorized device. By requiring both a valid user identity and an authorized, device-locked profile, DIVE enforces the Principle of Least Privilege, drastically reducing the overall network attack surface.

The UUID is the unique digital fingerprint of a connecting device, and DIVE relies on this UUID to enforce security. The OpenVPN Connect app reads this identifier directly from the operating system and transmits it to CloudConnexa. By doing this, DIVE can lock a user's connection profile to that specific UUID, ensuring that even if the user's password and configuration file is stolen, it cannot be used to connect from any other device.

Additional Features

Everything you need to know about the product and billing. Can’t find the answer you’re looking for? Please chat to support

Cyber Shield

Cyber Shield This built-in feature of Cloud Connexa is an easy-to-use, customizable IDS/IPS and Content Filtering feature that protects remote access.

Learn more

Cloud Protection/ZTNA

Don’t sacrifice safety for the benefits of the Cloud. Create a dedicated worldwide private overlay network, exclusively for your use, with Cloud Connexa.

Learn more

Application-based Domain Routing

Domain name awareness combined with sophisticated routing logic so you can define routes to connected networks using domain names.

Learn more

Explore All Features View Datasheet

See what nearly 20,000 customers, hundreds of partners, and all major cloud providers already know.

Jason K. REPAY
Easy to configure options, add users, and that it has two factor authentication built in. You can configure the system to allow connections on common ports so that you're able to connect from pretty much anywhere in the world.
Johnathan B. Surry Telephone
Configuring and updating my own server is super simple. In my experience, I've always had some difficulty setting up hardware VPN appliances, but OpenVPN was no-nonsense.
Alex H. DGDean
The OpenVPN Access Server AMI is a great out of the box VPN solution for your AWS VPC...
John G. Anovys, LLC
OpenVPN offers users a very simple and secure VPN option that is both economical and quick to install. Users are able to easily install it on their client devices.
Jeremy F. Intelligent Pathways
The availability of client software for all operating systems and mobile devices means my customers can connect regardless of their setup.
Josh Wc. nexgen|packaging, LLC
Excellent, flexible solution for our Azure environment.

Ready to get started?

Jump in with a free 14-day trial, or request a demo with our team.

Sign Up Get a Demo