Providing users with secure access to services
In most cases, our end users have some form of remote access to the infrastructure via certain services, such as Always On VPN. This ensures that their endpoints can communicate with fileservers, print servers, Active Directory, and other network protocols, such as TCP/UDP for the different applications that require it.
Now the reason for using Always On VPN or another third-party service is that it provides a similar experience to being at the office for the end user. This allows them to log in on their machine and be automatically connected to the infrastructure via a VPN tunnel, providing a seamless user experience.
Many of these VPN services also provide Network Access Control (NAC) capabilities, which check the health of a device before it is allowed to authenticate or send traffic across the VPN tunnel.
However, in most cases, these checks can be quite limited, and secondly, once the VPN tunnel is active, the endpoint is...
