Software-defined.
Security-driven.
Cloud-delivered.

Software-defined.
Security-driven.
Cloud-delivered.

Software-defined. Security-driven. Cloud-delivered.

Cradlepoint NetCloud Engine logo

 


Cradlepoint NetCloud Engine

Software-Defined Perimeter

Introducing your next WAN—a software-defined perimeter, delivered as a service, enabled as a dark cloud, and designed with the security required for today’s connected enterprise.

NetCloud Engine enables IT and network teams to deploy, expand or contract a software-defined perimeter in minutes to connect distributed people, and things anywhere. Our NetCloud Engine service is fueled by network and service virtualization software and powered by cloud infrastructure—providing Internet reach with private network security for network admins, and LAN-connect simplicity for mobile users. Now you can make the public Internet your private network without giving up visibility, security and control.

 


Connect & Protect People, Places & Things Anywhere

Cradlepoint NetCloud Engine: People, Places & Things

 

Description

 

Solutions

Take the Work Out of Networking Using Cradlepoint NetCloud Engine

 

 


 

Remote access from anywhere

Cradlepoint helps IT organizations maintain their sanity and budgets while addressing the growing need for remote access from anywhere. Whether keeping up with the demands of your remote and mobile workforce, connecting new remote offices, providing isolated access for contractors, or deploying a temporary network for a construction site or sales meeting, Cradlepoint NetCloud Engine makes it easy.

With Cradlepoint NetCloud Engine, you can build a virtual overlay network to give groups of remote users segmented access to files and applications—whether in the data center or public cloud. Provide users with a seamless LAN experience while eliminating the hardware and headaches of a traditional VPN. Through the admin web console, you can provision users and devices in just a few clicks, and delete them just as fast.

From a security perspective, NetCloud Engine combines strong end-to-end encryption, auto-PKI and machine authentication with a fully cloaked private address space and micro-segmentation capabilities to offer the security of a private network over the public Internet.

 

Features:

  • Support for all modern devices: Windows, Mac, Linux, iOS and Android
  • Automatic user and device level ACLs
  • Multi-factor authentication: user (ID), device (token) and certificate (PKI)
  • Encryption: AES 256-bit encryption, no configuration

 

Benefits:

  • Network virtualization enables new security model for cloud and mobile
  • Scale connectivity when and where you need it
  • Virtual overlay network, works with existing infrastructure
  • No hardware upgrades, scalable and always up-to-date

Cradlepoint NetCloud Engine GeoView screen shot


 

Enterprise mobility, extend MDM

NetCloud Engine is designed to address the unique challenges associated with providing secure access to critical files and applications from mobile devices, including Windows, Android and Apple iOS phones and tablets.

Unlike traditional VPNs, you can deploy a virtual overlay network and segregate mobile users and the specific servers they need access to—whether in the data center or public cloud—from everything else. This “quarantine” approach ensures that mobile devices are contained and mobile users cannot access unauthorized resources on data center or office LANs.

Enterprise mobility requires enterprise security. NetCloud Engine extends MDM by providing micro-segmentation capabilities and a fully cloaked private address space with outbound-only connections to eliminate the risk of exposing public IP addresses or inbound firewall ports.

 

Features:

  • Supports Windows, Android and iOS tablets and phones
  • Network virtualization and micro-segmentation enables quarantining of mobile devices
  • End-to-end encryption with device and X.509 certificate (PKI) authentication
  • Works with MDM and popular mobile apps for file and desktop access

 

Benefits:

  • Superior mobile security without the complexity of traditional VPNs
  • Scale mobile access when and where you need it
  • Virtual overlay network, works with existing infrastructure
  • No head-end hardware, scale without forklift upgrades

Cradlepoint NetCloud Engine Devices screen shot


 

M2M & connected devices

A machine-to-machine network with NetCloud Engine can securely connect, monitor and manage devices deployed in the field, or anywhere in the world. You can create a virtual overlay network to connect devices using any form of public or private Internet access and segment them by customer, site or function.

Because NetCloud Engine provides persistent, always-on connections—just like a LAN, they're ideal for supporting real-time applications like remote monitoring, data analysis and complex event processing (CEP).

NetCloud Engine is designed to support the unique security requirements of M2M and connected device applications, including: strong end-to-end encryption, auto-PKI and machine authentication, a fully cloaked private address space, outbound-only connections, virtual network isolation and micro-segmentation.

 

Features:

  • Support for all modern devices: Windows, Mac, Linux, Android, and iOS
  • Persistent, always-on connections
  • Micro-segmentation with device-level SSL encryption
  • Machine-level authentication designed for embedded devices, kiosks, etc.

 

Benefits:

  • Massively scalable cloud platform with global footprint
  • Supports real-time applications like remote monitoring, analysis and CEP
  • Managed service with automatable deployments reduces operating costs
  • Self-healing cloud service ensures maximum uptime
  • Private IP address space and outbound connections eliminate the need for expensive public IP addresses and on-premise firewall changes

Cradlepoint NetCloud Engine Device Details screen shot


 

Extend your AD domain everywhere

Today, Active Directory (AD) is the foundation of enterprise security. It provides essential domain services such as authentication and single sign-on (SSO), password compliance, security and configuration policy (Group Policy), desktop software updates, and DNS. This all works great when everyone's in the office and on the AD domain, but what happens when remote users are off domain for extended periods of time?

NetCloud Engine with ADConnect allows IT admins to extend AD domain services seamlessly to remote users everywhere. Unlike traditional VPNs, NetCloud Engine emulates a persistent LAN connection that enables native AD authentication and keeps remote machines always on domains without end user interaction. Now you can reduce security risks and improve compliance by extending essential AD capabilities to everyone everywhere.

 

Features:

  • Instant connection enables native AD logins, no cached passwords
  • Extends AD domain security and policy to remote users anywhere
  • Persistent, LAN-like experience requires no user interaction
  • Connect secondary and tertiary AD servers anywhere for redundancy

 

Benefits:

  • Improve security and compliance of remote and mobile workforce
  • Reduce support desk calls for password updates, etc.
  • Improve user experience with Kerberos SSO for remote users
  • Ensure availability of AD infrastructure

Cradlepoint NetCloud Engine Usage Monitor screen shot


 

Hybrid & multi-cloud networking

There are a lot of public cloud options today. Whether your workloads are mainstream applications, disaster recovery, development or cloud bursting, there's a public cloud suited to your needs and workflow. The challenge becomes how to securely network them all together without losing automation and flexibility.

NetCloud Engine lets IT, development and DevOps teams build virtual private cloud (VPC) networks in minutes that connect cloud instances, containers and remote users across any private or public cloud. NetCloud Engine is software-defined and cloud-based, so there's no hardware or configuration and automation is a snap using machine authentication.

Each VPC is a secure, virtual overlay network with its own private address space, eliminating the need for public IP addresses or open inbound firewall ports.

 

Features:

  • Connect distributed VMs, containers and remote users on a single subnet
  • Isolate multiple cloud environments, easily migrate workloads
  • Virtual overlay network works with any private or public cloud
  • Superior security over traditional VPNs
  • Automatable using popular cloud orchestration and deployment tools

 

Benefits:

  • Connect distributed VMs, containers and remote users on a single subnet
  • Isolate multiple cloud environments, easily migrate workloads
  • Virtual overlay network works with any private or public cloud
  • Superior security over traditional VPNs
  • Automatable using popular cloud orchestration and deployment tools

Cradlepoint NetCloud Engine Dashboard GeoView screen shot


 

SD-WAN for Cloud BC/DR

Many IT organizations have embraced public cloud storage or private Disaster Recovery as a Service (DRaaS) solutions as a cost effective way to ensure business continuity (BC) in the event of a disaster. While these services simplify the process of continual data backup and server replication, one challenge remains—static and inelastic network connectivity.

NetCloud Engine SD-WAN allows IT organization to deploy a virtual overlay network for BC/DR to connect remote and displaced workforce to backup servers and data from anywhere and any device. Since Cradlepoint networks are cloud-based and software-defined, you can seamlessly scale from a few to hundreds of connections—eliminating racks of idle hardware. With NetCloud Engine SmartZones, you can even deploy DR-based WAN parallel to your traditional WAN and control how traffic is routed between them.

 

Features:

  • Supports any server, VMs, containers on any private or public cloud
  • Secure DR access for Windows, Mac, Android and Apple devices
  • LAN over WAN connection for primary and backup server replication
  • Deploy in minutes or run parallel to your primary WAN
  • Scales instantly—without hardware—to support hundreds of connections
  • Integrated DNS service eliminates remapping of drives and FQDNs
  • Multi-layer security ensures compliance without additional overhead
  • Automatable using popular cloud orchestration and deployment tools

 

Benefits:

  • Provide business continuity in the event of a disaster displaces your workforce
  • Single solution that can support a breath of DR/BC requirements
  • Multi-cloud SDN platform routes around disasters to ensure high availability
  • Application-level network ensures DR workload mobility across private and public clouds
  • Save thousands by eliminating racks of standby network hardware
  • Accelerate DR fail-over by using SmartZones to run parallel WANs

Cradlepoint NetCloud Engine Devices > Routers screen shot

Specifications

Features

 

Simplicity

  • Deploys in minutes
  • No configuration
  • No changes to existing network infrastructure

 

Security

  • Encrypted data-in-transit (256-bit AES)
  • No data stored in cloud
  • Private IP address space
  • Enables micro-segmentation for zero-trust WANs
  • Certificate-based Auto-PKI (X.509 CA)

 

High Availability

  • Runs on top-tier cloud providers around the world
  • Fully redundant architecture
  • Self-healing, self-optimizing
  • Seamless failover

 

OS Support

  • Windows 7/8, Mac 10.7+
  • Windows, Android, and iOS phones and tablets
  • Windows 2008R2/2012 and Linux servers
  • Docker containers

 


 

Functionality
Standard
Prime
OS Client
Cloud-Based VPN
Secure Overlay Connection
Remote Access
MPKI-as-a-Service included
NameStation
ADConnect
GeoView Pro
iosConnect  
Port/Protocol ACLs  
Application Firewall  
Access Control  
Secure Internet Access  
Usage Monitor  
Virtual Gateways  
SmartZones  

Support

Knowledge Base Articles


View All Results In Knowledge Base >>

Resources

How to Buy

How to Buy

NEW CUSTOMERS

If you are a new customer, please contact your Approved Cradlepoint Partner.

 

 

 

EXISTING CUSTOMERS

If you are an existing customer, currently using NetCloud Engine Standard, please contact our Insides Sales Team for an NCE Prime Upgrade Quote. You can then use the quote to purchase through your Approved Cradlepoint Partner.

 

 

 


Product Requirements

Cradlepoint’s NetCloud Engine Gateway requires NetCloud Manager. For a NetCloud Engine Gateway, the following routers are supported and firmware version 6.2.0 or higher is required.


Supported Cradlepoint Routers


Part Numbers

Standalone NetCloud Client and NetCloud Gateway (Standard or Prime)

Product Name Part No. Description
Client Standard NCE-CLN-1YR 1-yr NetCloud Client Standard, SaaS License
Client Standard NCE-CLN-3YR 3-yr NetCloud Client Standard, SaaS License
Client Standard NCE-CLN-5YR 5-yr NetCloud Client Standard, SaaS License
Client Prime NCE-CLNPRM-1YR 1-yr NetCloud Client Prime, SaaS License
Client Prime NCE-CLNPRM-3YR 3-yr NetCloud Client Prime, SaaS License
Client Prime NCE-CLNPRM-5YR 5-yr NetCloud Client Prime, SaaS License
Gateway Standard NCE-GW-1YR 1-yr NetCloud Gateway Standard, SaaS License (NetCloud Manager required)
Gateway Standard NCE-GW-3YR 3-yr NetCloud Gateway Standard, SaaS License (NetCloud Manager required)
Gateway Standard ENCE-GW-5YR 5-yr NetCloud Gateway Standard, SaaS License (NetCloud Manager required)
Gateway Prime NCE-GWPRM-1YR 1-yr NetCloud Gateway Prime, SaaS License (NetCloud Manager required)
Gateway Prime NCE-GWPRM-3YR 3-yr NetCloud Gateway Prime, SaaS License (NetCloud Manager required)
Gateway Prime NCE-GWPRM-5YR 5-yr NetCloud Gateway Prime, SaaS License (NetCloud Manager required)

 

NetCloud Platform Bundle – NetCloud Manager (NCM) + NCE Gateway (Standard/Prime)

Product Name Part No. Description
NCM Standard + NCE Standard NCE-GW-NCM-1YR 1-yr NCE Gateway and NCM (Standard)
NCM Standard + NCE Standard NCE-GW-NCM-3YR 3-yr NCE Gateway and NCM (Standard)
NCM Standard + NCE Standard NCE-GW-NCM-5YR 5-yr NCE Gateway and NCM (Standard)
NCM Prime + NCE Prime NCE-GWPRM-ECMPRM-1YR 1-yr NCE Gateway and NCM (Prime)
NCM Prime + NCE Prime NCE-GWPRM-ECMPRM-3YR 3-yr NCE Gateway and NCM (Prime)
NCM Prime + NCE Prime NCE-GWPRM-ECMPRM-5YR 5-yr NCE Gateway and NCM (Prime)

Support Bundles

NCE (Standard or Prime) + CradleCare

Product Name Part No. Description
Client Standard + CradleCare NCE-CLN-CCNCE-1YR 1-yr NetCloud Client Standard + CradleCare
Client Standard + CradleCare NCE-CLN-CCNCE-3YR 3-yr NetCloud Client Standard + CradleCare
Client Standard + CradleCare NCE-CLN-CCNCE-5YR 5-yr NetCloud Client Standard + CradleCare
Client Prime + CradleCare NCE-CLNPRM-CCNCE-1YR 1-yr NetCloud Client Prime + CradleCare
Client Prime + CradleCare NCE-CLNPRM-CCNCE-3YR 3-yr NetCloud Client Prime + CradleCare
Client Prime + CradleCare NCE-CLNPRM-CCNCE-5YR 5-yr NetCloud Client Prime + CradleCare

 

NetCloud Platform Bundle (Standard or PRIME) + CradleCare

Product Name Part No. Description
NCM-Std + NCE-Std + CradleCare NCE-GW-NCM-CC1YR 1-yr NetCloud Gateway Standard + NCM Standard + CradleCare
NCM-Std + NCE-Std + CradleCare NCE-GW-NCM-CC3YR 3-yr NetCloud Gateway Standard + NCM Standard + CradleCare
NCM-Std + NCE-Std + CradleCare NCE-GW-NCM-CC5YR 5-yr NetCloud Gateway Standard + NCM Standard + CradleCare
NCM-Prime + NCE-Prime + CradleCare NCE-GW-ECMPRM-CC1YR 1-yr NetCloud Gateway Prime + NCM Prime + CradleCare
NCM-Prime + NCE-Prime + CradleCare NCE-GW-ECMPRM-CC3YR 3-yr NetCloud Gateway Prime + NCM Prime + CradleCare
NCM-Prime + NCE-Prime + CradleCare NCE-GW-ECMPRM-CC5YR 5-yr NetCloud Gateway Prime + NCM Prime + CradleCare