Views:

Apex One uses several methods to secure network traffic between the Edge Relay Server and the external agents:

  • The Edge server never initiates any connections. This allows customers to limit access to it.
  • The Edge server uses several digital certificates to authenticate the agents and secure the data channels between the Apex One agents and the server.
  • The external agents communicate with the Edge server using HTTPS.
  • During the installation of the edge relay software, you specify the public IP and FQDN that you want the Apex One agent to connect to.
  • An Apex One agent will feed back data to the Edge server only if it meets all of the following conditions:
    • Its location is “out of office”
    • It has the Edge Relay certificate
    • It has the Edge Relay information in its registry

Between needing a special certificate to connect to it, and the customer being able to explicitly limit its outbound connections, it makes it difficult to use the edge server as a entry point for network infiltration.

 
For information about the ports and protocols used by Apex One that should be allowed through a firewall or router, check out this article.
 
Keywords: edge relay server communication,secure external agent communication,edge server certificate,edge server agent,Demilitarized Zone,DMZ,Off Premise Management,Off-Premise Management,OfficeScan XG Service Pack 1,OfficeScan XG SP1,OSCE XG Service Pack 1,OSCE X
Comments (0)