The Apex One Edge Relay server provides administrators visibility and increased protection of endpoints that users take outside of the company's intranet. By installing the Edge Relay server in the Demilitarized Zone (DMZ), off-premise Security Agents that cannot establish a direct connection to the Apex One server can still poll the server in order to receive updated policy settings.
After configuring the Edge Relay server, Security Agents receive the settings and automatically begin to connect to the Edge Relay server once connection to the Apex One server is unavailable.
Communication between the Edge Relay server, Apex One server, and Security Agents is encrypted using certificate authentication.
Before proceeding with the installation, please refer to KB 1123000 for more Information about the Edge Relay Server.
After successful set up of the Edge Relay Server, the Apex One agent needs to talk to the on-premises Apex One server directly at least once. This is when the Apex One agent gets the certificate as well as the configuration details for the Edge Relay server.