Make your infrastructure invisible to the prying eyes of attackers and other non-authorized personnel, whether it resides in your LAN, datacenter, or cloud. With GoodAccess software-defined perimeter you can define your network with identity-based network access and face modern online threats with confidence.
Create Free AccountSee DemoNo card required. Full onboarding support.
BENEFITS
Cover every device as a potential entry point to your network and protect it by zero-trust access control, MFA, SSO, traffic encryption, segmentation, and other features.
Manage on-premise and cloud assets, users and devices, assign access rights, and set up granular access policies via a web GUI.
Deploy GoodAccess in 10 minutes even if you are not a networking expert. Benefit from a 100% software solution that scales as you grow.
Walkthroughs, user guides, top-rated support, and user experience result in an average 4.8/5 user satisfaction rating and 92% likelihood to recommend GoodAccess.
FEATURES
Gateway network
Starter is a free business VPN that creates a secure VPN infrastructure for your virtual organization. Every time a user connects, GoodAccess automatically seeks out the nearest gateway location with the lowest latency and assigns an IP address dynamically. This enables secure private browsing and encrypted remote access to IT resources for your coworkers, even if they connect through public Wi-Fi.
Threat protection
Starter comes equipped with Threat Blocker, an always-on feature that stops phishing, malware, botnets, ransomware ploys and other online security threats before they hit the user and breach your network. Learn more about GoodAccess Threat Blocker.
Goodaccess app
GoodAccess comes with one-click applications for iOS, macOS, Android, Windows and ChromeOS. No configuration is needed. Just invite your colleagues via email to create their account and get the GoodAccess app.
secure gateway
Prevent users from accessing dangerous or compromised malicious websites and falling prey to malware, phishing, command and control (C&C) botnets and other ploys. Once a user connects through a GoodAccess cloud gateway with your dedicated DNS server, all of their web activity is protected in real time by blocking unwanted content and malicious domains. Protection is constantly updated using threat intelligence feeds and DNS blacklists (see DNS filtering).
branch connector
Incorporate your network resources in a few minutes with no reconfiguration of your current infrastructure. Include any on-premise infrastructure (LANs, data centers) or clouds into a software defined perimeter with GoodAccess connectors to hide them on the public internet. Choose what protocols to use (IPsec, IKEv2, or OpenVPN) to establish an encrypted connection and set up a redundant IPsec or IKEv2 tunnel as a failsafe.
threat blocker
Assign access rights based on the least-privilege principle to prevent unauthorized access and lateral movement. With virtual access cards, every user receives a private network identity, which, after authentication, allows them to access only specified applications that they are authorized to use. You can also use external providers' single sign-on authentication (GSuite, Okta, Active Directory/LDAP).
user-to-application
With GoodAccess’ software defined perimeter you can control access on a user-to-application basis. Define your SaaS based application such as CRM and marketing tools as part of your secured network and apply the same level of protection as in your LAN in a few clicks. By segmenting access rights in the GoodAccess management dashboard, you achieve a higher granularity than network segmentation at a fraction of network operation costs and deployment time.
device access
GoodAccess comes with always-on client apps for iOS, macOS, Android, Windows and ChromeOS. No configuration is needed. Once authenticated through the GA app, any device turns into a secure end-point. Just invite your colleagues via email to create their account and get the GoodAccess app.
MFA/SSO
Base access to your network resources on user identity and device posture check. GoodAccess pre-authenticates users and their devices when they log into the secure GoodAccess infrastructure. The login supports multi-factor authentication (MFA), biometrics and tokens on the top of single sign-on (SSO) using Google, Okta, MS Entra ID credentials, or universal (SAML). Automate your access provisioning via SCIM.
access monitoring
Have full control over gateway access points to monitor who connects to your network and when. See which users log into your systems, when, and how much data they transfer. Observe user access behavior to reduce risk and comply with GDPR, SOC2, or HIPAA regulations.
testimonials
Experience GoodAccess via an interactive demo. Get a feel for all its features and find out why GoodAccess is the right choice for your business.
100% cloud SDP solution that scales as your business grows.
Dedicated Cloud VPN with Static IP whitelisting
Zero-trust access for multi-site & cloud businesses
Enterprise features and Premium 24/7 support for large organizations
GoodAccess adheres to the most demanding standards of software security compliance so you can have a peace of mind that your organization's data is safeguarded properly.
Create your free account and get all premium features for 14 days for free.
Choose from 35+ locations for your dedicated gateway. Define which assets should be part of your network, such as systems, apps, clouds, and devices.
Invite users via email to create their account and get the GoodAccess app. Use access cards to assign permissions only to selected SaaS applications, services, servers, internal systems, and such.
Click to connect from any device anywhere and work securely. Oversee who and when connects to your applications, control activity, and data transfers.
Book a call with the GoodAccess success manager to learn more about our products.
Software defined perimeter (SDP) is a security framework that allows hiding both traffic and the IT infrastructure connected to the public internet from interception. SDP interconnects all users (employees, third party) and company assets in a shielded environment on the network layer. This means it only establishes a connection once it has verified the identity of the user and determined if the user device meets the conditions for connecting. An authenticated user does not gain access to the entire network but only to systems they are authorized to work with.
The main difference is in the scope of access rights provided to the user. A VPN allows user access to the entire network once they are authorized. Zero trust network access is a security concept utilizing the least privilege principle, so that access is granted only to selected systems for satisfactorily authorized users.
Any company, no matter the size can today implement zero-trust network access security thanks to the democratization of ZTNA tools. Basically, there are three forms that a ZTNA deployment can take and they vary depending on the systems included and the overall goals they aim to achieve: identity-based model, microsegmentation model, and software-defined perimeter (SDP). Learn more about the ZTNA implementation in our blog.