diff --git a/src/content/changelog/access/2024-10-01-ssh-with-access-for-infrastructure.mdx b/src/content/changelog/access/2024-10-01-ssh-with-access-for-infrastructure.mdx index 4f79426817197a1..d6f845be9629247 100644 --- a/src/content/changelog/access/2024-10-01-ssh-with-access-for-infrastructure.mdx +++ b/src/content/changelog/access/2024-10-01-ssh-with-access-for-infrastructure.mdx @@ -2,6 +2,8 @@ title: Eliminate long-lived credentials and enhance SSH security with Cloudflare Access for Infrastructure description: Use short-lived SSH certificates and fine-grained policy to secure access to your SSH servers. date: 2024-10-01 +products: + - access --- Organizations can now eliminate long-lived credentials from their SSH setup and enable strong multi-factor authentication for SSH access, similar to other Access applications, all while generating access and command logs. diff --git a/src/content/changelog/access/2025-01-15-ssh-logs-and-logpush.mdx b/src/content/changelog/access/2025-01-15-ssh-logs-and-logpush.mdx index c0413456ffaf57c..181045a536f6b12 100644 --- a/src/content/changelog/access/2025-01-15-ssh-logs-and-logpush.mdx +++ b/src/content/changelog/access/2025-01-15-ssh-logs-and-logpush.mdx @@ -2,6 +2,8 @@ title: Export SSH command logs with Access for Infrastructure using Logpush description: Easily configure automatic export of SSH command logs to third-party storage destinations or to security information and event management (SIEM) tools. date: 2025-01-15 +products: + - access --- :::note[Availability] diff --git a/src/content/changelog/access/2025-03-03-saml-oidc-fields-saml-transformations.mdx b/src/content/changelog/access/2025-03-03-saml-oidc-fields-saml-transformations.mdx index 1fadb777158e9a2..f053b1e2dc166c2 100644 --- a/src/content/changelog/access/2025-03-03-saml-oidc-fields-saml-transformations.mdx +++ b/src/content/changelog/access/2025-03-03-saml-oidc-fields-saml-transformations.mdx @@ -2,6 +2,8 @@ title: New SAML and OIDC Fields and SAML transforms for Access for SaaS description: Access for SaaS new SAML and OIDC Fields and SAML transforms date: 2025-03-03 +products: + - access --- [Access for SaaS applications](/cloudflare-one/applications/configure-apps/saas-apps/) now include more configuration options to support a wider array of SaaS applications. diff --git a/src/content/changelog/access/2025-04-09-SCIM-provisioning-logs.mdx b/src/content/changelog/access/2025-04-09-SCIM-provisioning-logs.mdx index 3381246069b2daa..3ddf64ca8720659 100644 --- a/src/content/changelog/access/2025-04-09-SCIM-provisioning-logs.mdx +++ b/src/content/changelog/access/2025-04-09-SCIM-provisioning-logs.mdx @@ -2,6 +2,8 @@ title: Cloudflare Zero Trust SCIM User and Group Provisioning Logs description: View all user and group updates, creation and deletion events made via SCIM across all of your IdP instances in one place date: 2025-04-09 +products: + - access --- [Cloudflare Zero Trust SCIM provisioning](/cloudflare-one/identity/users/scim) now has a full audit log of all create, update and delete event from any SCIM Enabled IdP. The [SCIM logs](/cloudflare-one/insights/logs/scim-logs/) support filtering by IdP, Event type, Result and many more fields. This will help with debugging user and group update issues and questions. diff --git a/src/content/changelog/access/2025-04-21-Access-Bulk-Policy-Tester.mdx b/src/content/changelog/access/2025-04-21-Access-Bulk-Policy-Tester.mdx index da2d70898c78a13..c9fd074f6b2637a 100644 --- a/src/content/changelog/access/2025-04-21-Access-Bulk-Policy-Tester.mdx +++ b/src/content/changelog/access/2025-04-21-Access-Bulk-Policy-Tester.mdx @@ -2,6 +2,8 @@ title: Access bulk policy tester description: Test and simulate Access policies before deploying them to production. The Access bulk policy tester allows you to test your policies against your entire user population before and after deploying them. date: 2025-04-21 +products: + - access --- The [Access bulk policy tester](/cloudflare-one/policies/access/policy-management/#test-all-policies-in-an-application) is now available in the Cloudflare Zero Trust dashboard. The bulk policy tester allows you to simulate Access policies against your entire user base before and after deploying any changes. The policy tester will simulate the configured policy against each user's last seen identity and device posture (if applicable). diff --git a/src/content/changelog/access/2025-07-01-browser-based-rdp-open-beta.mdx b/src/content/changelog/access/2025-07-01-browser-based-rdp-open-beta.mdx index 4a1287b0744a046..3278d173d6737dd 100644 --- a/src/content/changelog/access/2025-07-01-browser-based-rdp-open-beta.mdx +++ b/src/content/changelog/access/2025-07-01-browser-based-rdp-open-beta.mdx @@ -2,6 +2,8 @@ title: Access RDP securely from your browser — now in open beta description: Connect to internal Windows servers via a web browser — no VPN or RDP client required. date: 2025-07-01 +products: + - access --- [Browser-based RDP](/cloudflare-one/connections/connect-networks/use-cases/rdp/rdp-browser/) with [Cloudflare Access](/cloudflare-one/policies/access/) is now available in open beta for all Cloudflare customers. It enables secure, remote Windows server access without VPNs or RDP clients. diff --git a/src/content/changelog/access/2025-09-22-browser-based-rdp-ga.mdx b/src/content/changelog/access/2025-09-22-browser-based-rdp-ga.mdx new file mode 100644 index 000000000000000..6ebfb31f9763c6d --- /dev/null +++ b/src/content/changelog/access/2025-09-22-browser-based-rdp-ga.mdx @@ -0,0 +1,27 @@ +--- +title: Access Remote Desktop Protocol (RDP) destinations securely from your browser — now generally available! +description: Connect to internal Windows servers via a web browser — no VPN or RDP client required. +date: 2025-09-22 +products: + - access +--- + +[Browser-based RDP](/cloudflare-one/connections/connect-networks/use-cases/rdp/rdp-browser/) with [Cloudflare Access](/cloudflare-one/policies/access/) is now generally available for all Cloudflare customers. It enables secure, remote Windows server access without VPNs or RDP clients. + +Since we announced our [open beta](/changelog/access/#2025-06-30), we've made a few improvements: +- Support for targets with IPv6. +- Support for [Magic WAN](/magic-wan/) and [WARP Connector](/cloudflare-one/connections/connect-networks/private-net/warp-connector/) as on-ramps. +- More robust error messaging on the login page to help you if you encounter an issue. +- Worldwide keyboard support. Whether your day-to-day is in Portuguese, Chinese, or something in between, your browser-based RDP experience will look and feel exactly like you are using a desktop RDP client. +- Cleaned up some other miscellaneous issues, including but not limited to enhanced support for Entra ID accounts and support for usernames with spaces, quotes, and special characters. + +As a refresher, here are some benefits browser-based RDP provides: + +- **Control how users authenticate to internal RDP resources** with single sign-on (SSO), multi-factor authentication (MFA), and granular access policies. +- **Record who is accessing which servers and when** to support regulatory compliance requirements and to gain greater visibility in the event of a security event. +- **Eliminate the need to install and manage software on user devices**. You will only need a web browser. +- **Reduce your attack surface** by keeping your RDP servers off the public Internet and protecting them from common threats like credential stuffing or brute-force attacks. + +![Example of a browser-based RDP Access application](~/assets/images/changelog/access/browser-based-rdp-access-app.png) + +To get started, refer to [Connect to RDP in a browser](/cloudflare-one/connections/connect-networks/use-cases/rdp/rdp-browser/).