Spring til indhold
MyWorkspace

Centralized Access

Centralized Work Access for Multi-Location Teams

Every office, every remote worker, every contractor—accessing resources through one portal with one set of credentials and one security policy. No per-site VPNs. No fragmented access paths.

Talk to an Architect

The problem

Access fragmentation across locations

Every new office, acquisition, or remote policy adds another access path. Each path brings its own authentication, its own security posture, and its own audit blind spots.

  • Per-site VPN configurations

    Each location runs its own VPN gateway with its own credentials, its own firewall rules, and its own failure modes. IT maintains N configurations instead of one.

  • Inconsistent security posture

    The headquarters has 2FA and session logging. The satellite office uses a shared password on a consumer VPN. The security team doesn't know what they don't know.

  • Audit complexity across sites

    Compliance requires a unified access log. When access is fragmented across VPNs, RDP gateways, and third-party tools, assembling that log is a quarterly project—not a query.

  • Fragmented user experience

    Users at different locations follow different procedures to reach the same resources. New employees ask 'how do I connect?' and get different answers depending on their office.

How MyWorkspace solves this

One portal. Every location. One policy.

MyWorkspace consolidates all workspace and desktop access behind a single authenticated portal. Users see their assigned resources regardless of where the resource physically lives.

  1. 1

    Register locations and resources

    Add each site's machines, cloud workspaces, or internal applications to the centralized directory. Define which users and groups have access to which resources.

  2. 2

    Enforce unified authentication

    All users authenticate through the same identity layer—SSO, 2FA, conditional access. No per-site credentials. No site-specific login procedures.

  3. 3

    Users access everything from one place

    Open the portal, see assigned resources, connect. Whether the target is an office PC in Munich or a cloud workspace in Virginia, the experience is identical.

Technical advantages

Architecture for multi-site control

Centralized access is not just a UI consolidation. It requires routing, isolation, and policy enforcement at the infrastructure level.

Single control plane

All access policies, user assignments, and resource definitions managed from one admin console. Changes propagate immediately across all locations.

Multi-site routing

The platform routes authenticated sessions to the correct site's resources automatically. Users don't need to know which data center or office holds their workspace.

Tenant isolation

Each organization's resources, users, and policies are fully isolated. Multi-tenant infrastructure with single-tenant security guarantees.

Unified admin console

One interface to manage users, resources, policies, and audit logs across every location. No per-site admin portals. No configuration sync scripts.

Cross-location audit trails

Every access event from every location lands in one log. Filter by user, site, resource, or time. Export for compliance reporting or SIEM ingestion.

Conditional access policies

Restrict access by time of day, source network, device posture, or geographic location. Policies compose—site-level restrictions layer with org-level baselines.

Security & trust

Consistent security across every access path

Security posture should not depend on which office a user sits in or which VPN gateway they happen to connect through.

  • Uniform 2FA enforcement—every user, every location, every session, no exceptions
  • Centralized access policies applied identically whether the user connects from HQ, a branch office, or a home network
  • Unified audit logging—one log per organization, not one log per VPN gateway per site
  • Compliance-ready architecture with structured logs, exportable reports, and SIEM integration points
  • Session-level controls including idle timeout, maximum duration, and automatic disconnection on policy violation
  • Immediate access revocation propagates across all sites—no per-gateway cleanup required

Use cases

Organizations that centralize access with MyWorkspace

Multi-office enterprises

Five offices across three countries, each with its own IT history. MyWorkspace replaces the per-site VPN patchwork with one access layer managed by one team.

Franchise operations

Headquarters defines access policies. Each franchise location inherits consistent security and access controls without running local IT infrastructure.

Hybrid remote and in-office teams

Office workers and remote workers access the same resources through the same portal. No separate 'remote access' path with weaker security.

MSPs managing client environments

Managed service providers give each client a tenant with isolated resources, policies, and audit trails—all operated from one provider console.

FAQ

Centralized access questions

Each site's resources (office PCs, cloud workspaces, internal applications) are registered under location-specific groups in the admin console. When a user authenticates, the platform routes them to the correct resources based on their assignment—regardless of which physical location they're connecting from.

Yes. Policies can be scoped per location, per group, or per user. A high-security research site can enforce stricter access windows and additional authentication factors while a general office uses standard 2FA. All policies are managed from one console.

For workspace and desktop access, yes. MyWorkspace provides browser-based access to resources without VPN tunnels. For other network-level access needs (e.g., connecting to databases or internal APIs from developer machines), your VPN may still serve a purpose alongside MyWorkspace.

Every access event is logged with: user identity, authentication method, source IP, target resource, session start/end timestamps, and disconnect reason. Logs are searchable, exportable, and structured for integration with SIEM tools or compliance reporting workflows.

A new site is added in the admin console with its resource definitions (machines, workspaces, access policies). Users assigned to that location immediately see their resources in the portal. Typical onboarding for a 50-person office takes under a day of admin work.

One portal. Every office. One audit trail.

See how MyWorkspace centralizes access for multi-location organizations. 30-minute architecture walkthrough with a solutions engineer.

See the Technology