Cloudflare Access for private hostname applications can now secure traffic on all ports and protocols.
Previously, applying Zero Trust policies to private applications required the application to use HTTPS on port 443 and support Server Name Indicator (SNI).
This update removes that limitation. As long as the application is reachable via a Cloudflare off-ramp, you can now enforce your critical security controls — like single sign-on (SSO), MFA, device posture, and variable session lengths — to any private application. This allows you to extend Zero Trust security to services like SSH, RDP, internal databases, and other non-HTTPS applications.
For example, you can now create a self-hosted application in Access for ssh.testapp.local running on port 22. You can then build a policy that only allows engineers in your organization to connect after they pass an SSO/MFA check and are using a corporate device.
This feature is generally available across all plans.
Source: Cloudflare
Latest Posts
- (Updated) Microsoft Teams: Distinguish invites among Attendee, Presenter, and Co-organizer emails [MC1009930]
- Microsoft SharePoint: Retirement of IDCRL authentication protocol and enforcement of OpenID Connect and OAuth protocols [MC1184649]
- (Updated) Microsoft Teams: Meeting Participants Can Request Collaborative Annotation Sessions [MC1019312]
- (Updated) Microsoft 365 Copilot Mobile App: Capability to drive awareness via Notifications on M365 Admin Center [MC1308856]
![(Updated) Microsoft PowerPoint: Find and add company approved images with Brand Images [MC1169573]](https://mwpro.co.uk/wp-content/uploads/2025/06/pexels-pixabay-277013-96x96.webp "(Updated) Microsoft PowerPoint: Find and add company approved images with Brand Images [MC1169573] 7")
