Connectors
Connectors
A connector is a means of getting into or out of a constrained environment. The most common case is to get access to one or more internal resources (Web Application, Network Resource, Share, Desktop).
Agilicus supports two connector types:
- Agent. A self-updating, self-managing component that creates an outbound-only connection, and then allows reverse tunnelling. This is the most capable method
- IPSEC site-to-site. In this method an IPSEC tunnel is created between the Agilicus cloud and the protected site, and connections run over it.
When deciding how to proceed, consider these points:
| Capability | Agilicus Agent | Site-to-Site IPSEC |
|---|---|---|
| File-system Share | โ | |
| Remote Desktop | โ | |
| Outbound-only connectivity, no public IP | โ | |
| End-To-End TLS, secure key enclave | โ | |
| TCP-based resource | โ | โ |
| On-site identity-aware proxy | โ | |
| Local Machine Authentication re-export | โ | |
| 1+1 High Availability | โ | |
| M:N High Availability | โ | |
| Site-to-site TCP forwarder | โ | |
| HTTP Proxy | โ |
You need to have 1 connector per (internal) network segment that has resources to be exported. Typically this might mean only 1 per site, or per protected subnet or VLAN. Some customers prefer to install an Agent Connector co-located on the resource, but this is not strictly necessary.
See the guide for more information on installing the Agilicus Agent Connector.
Related Configuration
Return to Product Configuration
- Locked-Down Networks Certificate Revocation
- Signup: Firewall Configuration
- Sign-In Errors
- Geo-Location-Based Access Control
- Time Synchronisation
- Agent Connector Sign-In
- Resources – Overview, Concepts
- Connect to VTScada – Adding a Web Application
- Web Application Security
- Administrative Users
- Define Application: Proxy
- Authorisation rules
- Agent Connector Install: Raspberry Pi
- Real VNC & Raspberry Pi
- Kubernetes Agent Connector Install
- Linux, FreeBSD, Embedded Agent Connector Install
- Agent Connector Install: Ubiquity EdgeRouter X
- Audit Destinations
- Agent Connector Install: Netgate SG-1100 pfSense
- Identity Group Mapping
- Billing
- Auto-Create Users From Specific Domain With Google Workplace
- Organisation
- Authentication Audit
- Authentication Issuer – Custom Identity
- Signup
- Microsoft ClickOnce
- Groups
- Agilicus Agent Windows Cluster
- Launchers
- Forwarding
- Usage Metrics
- Service Accounts
- Connectors
- Identity & Authentication Methods
- Content Security Policy
- Users
- Sign-In Theming
- Sign in With Apple
- Azure Active Directory
- Sign in With Microsoft
- Agilicus Agent (Desktop)
- Agent-Connector
- Zero-Trust SSH Access
- Theory of Operation: CNAME + DOMAIN
- Zero-Trust Desktop Access
- Command Line API Access
- Applications
- Permissions
- Profile
- Multi-Factor Authentication
- Authentication Rules
- Application Request Access
- OpenWRT Agent Connector Install
- Synology Agent Connector Install
- Authentication Clients
- Authentication Rules
- Shares
- Services
- Resource Permissions
- Resource Groups
- Legacy Active Directory