Here is a list of all Enterprise features:
- Ability to use external OIDC (Google/Microsoft/Okta/JumpCloud/Custom) to login or create Defguard account.
- Do Multi-Factor Authentication on selected VPN locations with External SSO on Desktop and Mobile clients (from version 1.5).
- Two-way LDAP & Active Directory synchronization
- Real time sync for client configurations! First WireGuard client to support this feature!
- Ability to define and enforce Access Control List rules / firewall management
- Ability to stream the Activity & Audit logs to external SIEM systems
- Ability to use external OIDC for secure remote enrollment and Desktop client configuration
- Ability to disable for users to manage their devices (just admin will have this possibility).
- Ability to disable for users to configure WireGuard clients other then Defguard desktop client.
- Ability to disable "All traffic" in the desktop client - just "predefined" traffic by admins.
- Ability to integrate with external tooling using REST API.