Integrating AWS Verified Access with device trust providers
Blog
This article explains how to integrate AWS Verified Access with CrowdStrike for Zero Trust remote access to corporate applications without VPN.
- AWS Verified Access enables secure app access using identity and device trust providers
- CrowdStrike Zero Trust Assessment scores endpoints 1-100 based on OS and sensor settings
- Solution requires Okta for identity and CrowdStrike for device posture verification
- Four-step setup: create trust providers, instance, group, and endpoint
- Verified Access policies written in Cedar language enforce access requirements
- Group policy enforces minimum CrowdStrike ZTA score of 50 across all endpoints
- Endpoint policy restricts access to users in specific identity groups
- Route53 CNAME maps application domain to Verified Access endpoint
This integration provides layered security by combining user identity verification with device security posture assessment, eliminating VPN dependency while maintaining Zero Trust principles.
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.