Cloud Gateway

For one of the following scenarios, it might be required that IdentityIQ should manage remote applications that are running on computers that are in a different IP zone and hence not directly accessible to IdentityIQ:

• IdentityIQ deployed as a service in the cloud and the IT applications are in the data center.

• IdentityIQ deployed as a service in the cloud and the IT applications are running in the cloud.

• IdentityIQ deployed on premise in one data center and the IT applications are running in the cloud.

• IdentityIQ deployed on premise in one data center and having to manage application in another data center.

In such scenarios for the current solution to work, multiple ports must be opened at the perimeter allowing IdentityIQ to communicate with these applications. In most cases this is not acceptable from a security standpoint.

The IdentityIQ Cloud Gateway is useful in such scenarios. The IdentityIQ Cloud Gateway must be installed on a computer running on the same IP zone as the remote applications that are to be managed by IdentityIQ. IdentityIQ would communicate with these applications through the IdentityIQ Cloud Gateway thereby requiring only one port to be open on the perimeter.

The main purpose of the IdentityIQ Cloud Gateway is to enable IdentityIQ to securely connect to and remotely manage applications located on a different IP zone than IdentityIQ.