Ubyon Launchpad brings all private resources together.
Every engineer joining your team has the same question: how do I find and connect to my infrastructure resources - machines, servers, clusters, and private services/applications that I need to do my job?
Ubyon Launchpad transforms the way team members connect to their private resources. With Ubyon TrustMesh, resources can be protected without users needing to connect to a private network or use a cumbersome VPN client. Instead, they can access on-premise or cloud resources as if they were connecting to SaaS tools. TrustMesh monitors and records every request to these resources, providing administrators with fine-grained controls, enhanced visibility, and security compared to traditional VPN solutions.
Deploying Ubyon TrustMesh takes administrators approximately one hour, and end-user logins to Launchpad take less than a second. Users can immediately access all their private resources from a single portal (Launchpad) without keeping track of where their machines, clusters, or private services are located across accounts, clouds, or data centers. This unified view makes it easy for users to search, locate and connect.
Traditional solutions require administrators to manage access to applications and maintain configuration dashboards manually. As organizations grow, this list of resources becomes unmanageable. Department leads and IT administrators can create and publish manual lists, but these become burdensome to maintain. Custom versions must also be published for contractors or partners that only require access to certain services.
In the modern era, private resources are dynamic and ephemeral, and manual implementations are no longer practical. Developers need access to CI/CD services, servers, and Kubernetes clusters across multiple clouds, monitoring/debug services associated with individual micro-services, PaaS, and private services.
Ubyon removes the complexity of managing private resources. Ubyon Launchpad is a dynamically rendered personalized dashboard that provides access to all resources protected by TrustMesh. Once enabled, users can log in and connect to every resource behind TrustMesh with a single click.
How does Ubyon Launchpad work?
Once administrators secure a resource with TrustMesh, every request to the service is intermediated through TrustMesh, which verifies the request against the authorization policy granting access to the resource.
TrustMesh relies on the identity provider already in use by the team to authenticate identity. TrustMesh supports OIDC and SAML 2.0 and seamlessly integrates with commonly used identity providers, such as Okta, AzureAD, G Suite, OneLogin, etc. to determine the user's identity. If the user has not yet logged in, TrustMesh will prompt them to do so via the configured identity provider.
When the user logs in, they are redirected to TrustMesh based on a unique subdomain. Administrators can customize the subdomain assigned to their account. For example, an account named "acme.com" can be assigned within ubyon subdomain ("acme.ubyon.com") or to company subdomain (“access.acme.com”). The Ubyon Launchpad utilizes the unique subdomain assigned to the specific account for referencing resources. When users visit a URL resource, Ubyon verifies their identity and displays only the resources that the user is authorized to access. Subsequent to launchpad login, whenever a user references a URL resource, they are redirected to the resource intermediated by TrustMesh without requiring separate logins for each resource.
How is it configured?
Ubyon Launchpad is enabled by default and can include all configured services. Each service configuration is mapped 1-to-1 to the corresponding private resources, such as servers, machines, clusters, services, services (object storage, data source), etc. Services can be automatically configured by enabling discovery of machines, servers, and services. Depending on the authorization policy, only users authorized to access a service will be able to view it on their Launchpad. Administrators are not required to manually configure each service that appears on the portal. Launchpad uses the policies already established in the account to create a personalized page for each user automatically.
Unify access to all your private resources
Although there are solutions available that offer a portal for accessing public applications, and some that extend it to private applications, they do not typically cover all the various types of infrastructure resources that users need to access and policy management is coarse-grained (not protocol-aware) as well as cumbersome. Additionally, most of these solutions require significant manual configuration, which is not feasible in the cloud-era where resources and services are constantly created and destroyed.
Ubyon provides an opportunity to adopt an identity-first architecture that automatically discovers your resources and dynamically renders them on a unified portal for your users to easily locate and connect to resources that they are authorized to access. This approach allows for greater flexibility and efficiency in managing resources across different environments.
See our video post demonstrating how Ubyon LaunchPad works.