Cisco Catalyst SD-WAN Solution Integrations Guide, Releases 26.x and Later

PDF

Cisco secure equipment access integration

Want to summarize with AI?

Log in

Describes the integration between Cisco Secure Equipment Access and Cisco Catalyst SD-WAN for remote access management.


Cisco Secure Equipment Access integration is a solution that

  • provides remote access to network-connected assets through integration with Cisco Catalyst SD-WAN

  • enables management of SEA agents on overlay network devices using Cisco SD-WAN Manager, and

  • configures connectivity between overlay network devices and the Cisco Secure Equipment Access cloud portal.

SEA integration capabilities

Integration with Cisco Catalyst SD-WAN enables you to use Cisco SD-WAN Manager to perform these tasks:

  • install the SEA agent on devices, such as routers, in the Cisco Catalyst SD-WAN overlay network

  • configure connectivity between the devices in the overlay network and the Cisco Secure Equipment Access cloud portal, and

  • configure how remote assets connect to the devices.

Assets can include anything reachable by IP address, such as servers, industrial internet of things (IIoT) devices, and so on. After you install the SEA agent on devices and configure the connectivity described here, other remote access tasks operate as usual for Cisco SEA. See Secure Equipment Access Overview on the Cisco DevNet site.


Benefits of Cisco secure equipment access integration

Cisco Secure Equipment Access (SEA) integration is a Zero-Trust Network Access (ZTNA) solution that

  • enables remote access to operational technology (OT) assets without time-consuming and costly site visits

  • operates through existing routers and switches with no dedicated hardware to install and manage, and

  • provides comprehensive security capabilities with advanced cybersecurity controls and easy-to-build policies based on identities and contexts.

Key benefits

Cisco SEA provides these benefits:

  • Operational efficiency: Enables operations teams easy remote access to OT assets, even those behind NAT boundaries.

  • Simple installation and scalability: Operates through existing routers and switches, so there is no need for dedicated appliances or complex firewall setups.

  • Strong security controls: Authenticates users with MFA and SSO. Cisco SEA verifies each user's security posture, providing access only to relevant assets.

  • Least-privilege access: Allows select users to access only specific devices, using only certain protocols, and only at defined times.

  • Audit trail: Records sessions and builds audit trails for investigation and compliance.