Cloudflare One

Cloudflare One is Cloudflare's Secure Access Service Edge (SASE) ↗ platform, which complements and integrates with Microsoft's security services. SASE is an architectural model that unifies enterprise networking services with Zero Trust security.

Zero Trust ↗ is a security model designed around the principle of least privilege. In the past, once you logged into a corporate network, you were "trusted" to move around freely. Zero Trust changes that. It assumes that threats can exist both outside and inside the network. Therefore, every request is authenticated and authorized based on identity and context before granting access.

The Cloudflare One platform allows organizations to move away from a patchwork of hardware appliances and point solutions. Instead, it consolidates security and networking through a unified control plane that includes products like Cloudflare Access, Secure Web Gateway (SWG), Cloudflare Tunnel, Data Loss Prevention (DLP), Remote Browser Isolation (RBI), Cloud Access Security Broker (CASB), and Email Security.

Cloudflare One supports key use cases with Microsoft such as:

• Using Microsoft Entra ID ↗ for authentication to all Cloudflare protected resources
• Leveraging Microsoft Intune ↗ device posture in Cloudflare policies to ensure only managed, trusted devices have access to protected resources
• Using Cloudflare CASB to inspect your Microsoft 365 ↗ tenants and alert on security findings for incorrectly configured accounts and shared files containing sensitive data
• Using Cloudflare's Secure Web Gateway to control access to Microsoft SaaS applications such as Outlook, OneDrive and Teams
• Using Cloudflare's Email Security service to increase protection of email from phishing attacks and business email compromise.