You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
In the IIoT / OT space, edge software cannot be installed on all devices and issued identities due to the hardware and OS limitations. These devices such as industrial computers, PLCs, other automation systems etc are networked to gateways. These gateways can run the ziti edge software. The ask is to be able to add identities per device that is connected to the gateway running the ziti edge software and map the identities by IP address ( longest prefix match with default being 0.0.0.0/0). This would allow the traffic dial and bind to be restricted till the last device that is not running a ziti edge software. Granular access and policy management can be achieved while simplifying service configs. If the IP address of the device does not match with the "associated IP address", then the device is not allowed to use the identity over ziti. This support is requested for ZET for Linux initially.
The text was updated successfully, but these errors were encountered:
In the IIoT / OT space, edge software cannot be installed on all devices and issued identities due to the hardware and OS limitations. These devices such as industrial computers, PLCs, other automation systems etc are networked to gateways. These gateways can run the ziti edge software. The ask is to be able to add identities per device that is connected to the gateway running the ziti edge software and map the identities by IP address ( longest prefix match with default being 0.0.0.0/0). This would allow the traffic dial and bind to be restricted till the last device that is not running a ziti edge software. Granular access and policy management can be achieved while simplifying service configs. If the IP address of the device does not match with the "associated IP address", then the device is not allowed to use the identity over ziti. This support is requested for ZET for Linux initially.
The text was updated successfully, but these errors were encountered: