Lộ trình liên quan Related learning track
Cloudflare One Cloudflare One
Truy cập SaaS an toàn với Access Secure SaaS access with Access
Team dùng Salesforce, Google Workspace, internal tools — cần SSO, policy theo group và không mở toàn bộ mạng như VPN. Teams use Salesforce, Google Workspace, internal tools — you need SSO, group policies, not full-network VPN access.
Tài liệu Cloudflare (use case) → Official Cloudflare use case docs →
Kiến trúc gợi ý Suggested architecture
User + IdP → Cloudflare Access policy → SaaS / self-hosted app User + IdP → Cloudflare Access policy → SaaS / self-hosted app
Sơ đồ tham chiếu (Cloudflare Docs) Reference diagrams (Cloudflare Docs)
Secure access to SaaS applications with SASE Secure access to SaaS applications with SASE
Zero Trust cho SaaS: policy theo identity, device posture và network context qua Cloudflare One. Cloudflare's SASE platform offers the ability to bring a more Zero Trust orientated approach to securing SaaS applications. Centralized policies, based on device posture, identity attributes and granular network location can be applied across one or many Saas applications.
Thuật ngữ: Concepts: SASE · Gateway · Access · Device posture · SaaS
Sơ đồ chính thức ↗ Official diagram ↗ · SASE / Cloudflare One Secure Access Service Edge (SASE)
Access to private apps without having to deploy client agents Access to private apps without having to deploy client agents
Learn how to provide access to private apps without having to deploy client agents. Learn how to provide access to private apps without having to deploy client agents.
Sơ đồ chính thức ↗ Official diagram ↗ · SASE / Cloudflare One Secure Access Service Edge (SASE)
Controls & stack Controls & stack
- Kết nối identity provider (Google, Azure AD, Okta…) Connect identity provider (Google, Azure AD, Okta…)
- Tạo Access application cho từng SaaS hoặc hostname Create Access applications per SaaS or hostname
- Policy: allow theo group, device posture (tuỳ plan) Policies: allow by group, device posture (plan-dependent)
- Không cần VPN cho từng app SaaS No VPN required per SaaS app
- Audit log ai truy cập app nào Audit logs for app access
Tình huống khác (cùng lộ trình) Other scenarios (same track)
- Thay thế VPN bằng Zero Trust access Replace VPN with Zero Trust access
- Bảo mật toàn doanh nghiệp (Zero Trust) Company-wide security (Zero Trust)
- Kết nối user an toàn (remote & hybrid) Secure user connections (remote & hybrid)
← Tất cả tình huống lộ trình này ← All scenarios in this track · Ba nhóm tình huống All three groups
Next step Next step
Tiếp tục hành trình học của bạn. Continue your learning journey.