CNAP (Cloud-Native Access Point) is an environment that provides secure access to Cloud resources. CNAP is an approved CAP (Cloud Access Point) alternative. Traditionally, all access to cloud had to flow through a DISA CAP, which typically led to bottlenecks due to lack of on-premise scalability, as well as requiring users to VPN into the DoDIN before being able to reach the cloud. Since the CNAP is Cloud Native, we eliminate the extra hop needed to connect to cloud resources, and offer a next-gen technical stack.
# What does CNAP do?
CNAP provides protection for ingress and egress traffic utilizing next-gen palo alto firewalls, as single points of entry and exit. CNAP incorporates AppGate SDP to act as a VPN replacement, that provides us features such as mTLS tunnels to endpoints, zero-trust, device state compliance enforcment, and RBAC. The CNAP performs intensive logging and collects data and traffic from all corners of the environment that can be aggregated and analyzed.
# Who is the audience for CNAP?
Users who need to consume IL-4 and IL-5 resources, and some cases priviledged access to IL-2 resources.
