1. How we can implement the SASE solution with Harmony - can we with Harmony Connect or Harmony Endpoint?
2. Is it possible to do with Harmony Endpoint/Connect or just with "Conventional" Endpoint?
Can we implement the following features:
Compliance Policy
- Replace current SCV checks with Harmony Endpoint compliance checks
- Configure compliance policy (Domain, patching, certificates, etc)
- Test compliance policy and update where necessary
- Document compliance policy settings
Endpoint Firewall
- Use cases: Location awareness, IT remote administration of endpoints (User or IP address based inbound rules), administration of endpoint firewall, etc
Remote Access VPN Policy
- Setup Harmony Endpoint policy for VPN sites
- Setup certificate (host-based authentication) always-on VPN. In addition or replaces current MFA (User-based authentication)?
- Pre-authentication to Active Directory configured via policy
- Setup DHCP Infoblox configuration for VPN clients
- VPN re-establishes after the laptop has been in sleep mode
- Configure VPN to not connect when the laptop is at Corporate campuses
- Configure and test visitor mode functions as expected
- VPN will be split tunnel
- Prevent laptops from connecting to the VPN (lost, stolen, employee leaves the company)