Cloudflare Access for private hostname applications can now secure traffic on all ports and protocols.
Previously, applying Zero Trust policies to private applications required the application to use HTTPS on port 443 and support Server Name Indicator (SNI).
This update removes that limitation. As long as the application is reachable via a Cloudflare off-ramp, you can now enforce your critical security controls — like single sign-on (SSO), MFA, device posture, and variable session lengths — to any private application. This allows you to extend Zero Trust security to services like SSH, RDP, internal databases, and other non-HTTPS applications.
For example, you can now create a self-hosted application in Access for ssh.testapp.local running on port 22. You can then build a policy that only allows engineers in your organization to connect after they pass an SSO/MFA check and are using a corporate device.
This feature is generally available across all plans.
Source: Cloudflare
Latest Posts
- AWS Resource Explorer supports 47 additional resource types
- (Updated) Microsoft 365 Copilot (web and mobile): Sharing Copilot Notebooks and mobile app rollout [MC1179160]
- Amazon EC2 R8i and R8i-flex instances are now available in Europe (London)
- (Updated) Microsoft Teams: Enhanced peripheral data in Pro Management portal reports for BYOD spaces [MC1090689]
![(Updated) Microsoft PowerPoint: Find and add company approved images with Brand Images [MC1169573]](https://mwpro.co.uk/wp-content/uploads/2025/06/pexels-pixabay-277013-96x96.webp "(Updated) Microsoft PowerPoint: Find and add company approved images with Brand Images [MC1169573] 7")
