You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/content/docs/cloudflare-one/applications/non-http/browser-rendering.mdx
+19-7Lines changed: 19 additions & 7 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -3,7 +3,6 @@ pcx_content_type: how-to
3
3
title: Browser-rendered terminal
4
4
sidebar:
5
5
order: 3
6
-
7
6
---
8
7
9
8
Cloudflare can render certain non-web applications in your browser without the need for client software or end-user configuration changes. Cloudflare currently supports rendering a terminal for SSH and VNC connections in a user's browser.
@@ -16,11 +15,24 @@ You can only enable browser rendering on domains and subdomains, not for specifi
16
15
17
16
To enable browser rendering:
18
17
19
-
1. In [Zero Trust](https://one.dash.cloudflare.com), go to **Access** > **Applications**.
20
-
2. Locate the SSH or VNC application you created when [connecting the server to Cloudflare](/cloudflare-one/connections/connect-networks/use-cases/ssh/). Select **Configure**.
21
-
3. In the **Policies** tab, ensure that only **Allow** or **Block** policies are present. **Bypass** and **Service Auth** are not supported for browser-rendered applications.
22
-
4. Go to **Advanced settings** > **Browser rendering settings**.
23
-
5. For **Browser rendering**, choose _SSH_ or _VNC_.
24
-
6. Select **Save application**.
18
+
1. In [Zero Trust](https://one.dash.cloudflare.com), go to **Access** > **Applications**.
19
+
2. Locate the SSH or VNC application you created when [connecting the server to Cloudflare](/cloudflare-one/connections/connect-networks/use-cases/ssh/). Select **Configure**.
20
+
3. In the **Policies** tab, ensure that only **Allow** or **Block** policies are present. **Bypass** and **Service Auth** are not supported for browser-rendered applications.
21
+
4. Go to **Advanced settings** > **Browser rendering settings**.
22
+
5. For **Browser rendering**, choose _SSH_ or _VNC_.
23
+
24
+
:::note
25
+
26
+
When connecting over SSH, Cloudflare supports following key exchange algorithms:
Users can connect by installing the Cloudflare WARP client on their device and enrolling in your Zero Trust organization. Remote devices connect to your applications as if they were on your private network. By default, all devices enrolled in your organization can access any private route unless they are protected by an Access policy or Gateway firewall rule. To secure the application, you can [create a self-hosted application](/cloudflare-one/applications/non-http/self-hosted-private-app/) for a private IP range, port range, and/or hostname and build [Access policies](/cloudflare-one/policies/access/) that allow or block specific users.
18
17
19
18
If you would like to define how users access specific infrastructure servers within your network, [create an infrastructure application](/cloudflare-one/applications/non-http/infrastructure-apps/) in Access for Infrastructure. Access for Infrastructure provides an additional layer of control and visibility over how users access non-HTTP applications, including:
19
+
20
20
- Define fine-grained policies to govern who has access to specific servers and exactly how a user may access that server.
21
21
- Eliminate SSH keys by using short-lived certificates to authenticate users.
0 commit comments