Network access (VPN)
Responsibilities
Section titled “Responsibilities”- Describe the reachability boundary: what is accessible on public internet vs LAN/VPN.
- Treat VPN as a network access mechanism (not “authentication” itself, even if SSO/MFA is used).
- Point to the operational entry points for requesting access and troubleshooting.
Not in scope (where the facts live)
Section titled “Not in scope (where the facts live)”- VPN endpoints and access groups: see VPN access.
- Firewall rules and procedures: see Firewall.
- Server inventories: see Servers.
Related models
Section titled “Related models”- Identity and authentication: Identity & authentication
- DNS reachability model: DNS
- Ingress/routing model: Reverse proxy