CINXE.COM
Solutions - Cisco Catalyst SD-WAN and Microsoft SSE Integration Solution Brief - Cisco
<!DOCTYPE html> <html xmlns:fb="//www.facebook.com/2008/fbml" xmlns:og="//opengraphprotocol.org/schema/" lang="en" xml:lang="en" class="no-touch no-js"> <head> <meta charset="utf-8"> <meta name="HandheldFriendly" content="True" /> <meta name="MobileOptimized" content="320" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <meta name="rei" content="3/2/2022 10.39am est" /> <script tyle="text/javascript" src="/content/dam/cdc/j/cdcrSwitch.js"></script> <script type="text/javascript"> if (typeof cdc === "undefined"){ cdc = {}; } cdc.localizedLang="en/us"; if (window.cdcext === undefined) { window.cdcext = {}; } cdcext.customEnvironment = "prod"; if (window.cdclocale === undefined) { window.cdclocale = {}; } cdclocale.locale = cdc.localizedLang=="en/us"?"en_us":cdc.localizedLang; </script> <script src="/c/dam/cdc/t/ctm-core.js"></script> <script> window['adrum-start-time'] = new Date().getTime(); window.environ = "prod" ; </script> <script> if (window.cpe === undefined) { window.cpe = {}; } cpe.accountName = "prod"; cpe.config = ["cinf","dsc","pps"]; cpe.hideMethod = "elements"; window.targetGlobalSettings = JSON.parse('{\x22timeout\x22:4000}'); window.targetPageParamsAll = () => JSON.parse('{\x22entity\x22:\x22{\\\x22id\\\x22:\\\x221726569418029313\\\x22,\\\x22categoryId\\\x22:\\\x22NetworkingSolutions,Solutions,Networking Solutions Island of Content Event\\\x22}\x22}'); const bullseyeLibrary = `/etc.clientlibs/cisco-cdc/clientlibs/clientlib-external/resources/external/bullseye.js`; import(bullseyeLibrary); </script> <script src="/etc.clientlibs/cisco-cdc/clientlibs/clientlib-external/resources/regional-mbox/regional-mbox.js"></script> <title>Solutions - Cisco Catalyst SD-WAN and Microsoft SSE Integration Solution Brief - Cisco</title> <meta name="format-detection" content="telephone=no"> <meta http-equiv="Content-type" content="text/html;charset=UTF-8" /> <meta name="description" content="The Catalyst SD-WAN with Microsoft SSE solution integrates Cisco’s robust SD-WAN capabilities with Microsoft Secure Service Edge to provide secure access between branches and the internet and Microsoft SaaS applications. The solution efficiently redirects branch internet traffic through Microsoft SSEfor secure inspection, resulting in stronger security and simplified management." /> <meta name="title" content="Solutions - Cisco Catalyst SD-WAN and Microsoft SSE Integration Solution Brief" /> <meta name="documentId" content="1726569417522312" /> <meta name="templateName" content="eot-toc" /> <meta property="fb:app_id" content="156494687694418" /> <meta name="ioContentSource" content="WEM" /> <meta name="concept" content="Solutions" /> <meta name="docType" content="Networking Solutions Island of Content Event" /> <meta name="iaPath" content="cisco.com#Networking Solutions#Solutions" /> <meta name="contentType" content="cisco.com#US#preSales" /> <meta name="locale" content="US" /> <meta name="language" content="en" /> <meta name="country" content="US" /> <meta name="CCID_Page" content="cc001772" /> <meta name="date" content="Tue Sep 17 03:35:56 PDT 2024" /> <meta name="accessLevel" content="Customer" /> <meta name="accessLevel" content="Guest" /> <meta name="accessLevel" content="Partner" /> <meta name="entitlementExpression" content="contains( "0,1,2,3,4,7" , $profileField[3] )" /> <meta property="og:site_name" content="Cisco" /> <meta property="og:type" content="website" /> <meta property="og:title" content="Solutions - Cisco Catalyst SD-WAN and Microsoft SSE Integration Solution Brief" /> <meta property="og:description" content="The Catalyst SD-WAN with Microsoft SSE solution integrates Cisco’s robust SD-WAN capabilities with Microsoft Secure Service Edge to provide secure access between branches and the internet and Microsoft SaaS applications. The solution efficiently redirects branch internet traffic through Microsoft SSEfor secure inspection, resulting in stronger security and simplified management." /> <meta property="og:image" content="https://www.cisco.com/web/fw/i/logo-open-graph.gif" /> <meta property="og:url" content="https://www.cisco.com/c/en/us/solutions/collateral/enterprise-networks/sd-wan/catalyst-sd-wan-ms-entra-sse-int-sb.html" /> <link rel="canonical" href="https://www.cisco.com/c/en/us/solutions/collateral/enterprise-networks/sd-wan/catalyst-sd-wan-ms-entra-sse-int-sb.html"/> <script src="/etc.clientlibs/clientlibs/granite/jquery.min.js"></script> <script src="/etc.clientlibs/clientlibs/granite/utils.min.js"></script> <script src="/etc.clientlibs/clientlibs/granite/jquery/granite.min.js"></script> <script src="/etc.clientlibs/foundation/clientlibs/jquery.min.js"></script> <script src="/etc.clientlibs/foundation/clientlibs/shared.min.js"></script> <script src="/etc.clientlibs/cq/personalization/clientlib/underscore.min.js"></script> <script src="/etc.clientlibs/cq/personalization/clientlib/personalization/kernel.min.js"></script> <script src="/etc.clientlibs/cq/personalization/clientlib/personalization/kernel.min.js"></script> <script type="text/javascript"> $CQ(function() { CQ_Analytics.SegmentMgr.loadSegments("\/etc\/segmentation"); CQ_Analytics.ClientContextUtils.init("\/c\/dnc\/etc\/clientcontext\/default", "\/content\/en\/us\/solutions\/collateral\/enterprise\u002Dnetworks\/sd\u002Dwan\/catalyst\u002Dsd\u002Dwan\u002Dms\u002Dentra\u002Dsse\u002Dint\u002Dsb"); }); </script> <link rel="stylesheet" href="/etc/designs/cdc/clientlibs/responsive/css/cisco-sans.min.css" type="text/css"> <script src="/etc/designs/cdc/clientlibs/responsive/js/foundation.min.js"></script> <link rel="stylesheet" href="/etc/designs/cdc/clientlibs/responsive/css/responsive.min.css" type="text/css"> <script> sessionStorage.setItem("logOutIntermediateMessage", 'You are being logged out.'); </script> <!-- Custom JSON LD For Products Type --> <script type="application/ld+json"> [ { "@context": "http://www.schema.org", "@type": "WebPage", "name": "Cisco Catalyst SD-WAN and Microsoft SSE Integration Solution Brief", "url": "https://www.cisco.com/c/en/us/solutions/collateral/enterprise-networks/sd-wan/catalyst-sd-wan-ms-entra-sse-int-sb.html", "description": "The Catalyst SD-WAN with Microsoft SSE solution integrates Cisco’s robust SD-WAN capabilities with Microsoft Secure Service Edge to provide secure access between branches and the internet and Microsoft SaaS applications. The solution efficiently redirects branch internet traffic through Microsoft SSEfor secure inspection, resulting in stronger security and simplified management.", "publisher": { "@type": "Corporation", "name": "Cisco" } }] </script> <!-- End Custom JSON LD For Products Type --> <!-- Video JSON LD --> <!-- End Video JSON LD --> <script>!function(e){var n="https://s.go-mpulse.net/boomerang/";if("False"=="True")e.BOOMR_config=e.BOOMR_config||{},e.BOOMR_config.PageParams=e.BOOMR_config.PageParams||{},e.BOOMR_config.PageParams.pci=!0,n="https://s2.go-mpulse.net/boomerang/";if(window.BOOMR_API_key="GKZXC-NS3SU-A7VFH-HKBHM-U7LKH",function(){function e(){if(!o){var e=document.createElement("script");e.id="boomr-scr-as",e.src=window.BOOMR.url,e.async=!0,i.parentNode.appendChild(e),o=!0}}function t(e){o=!0;var n,t,a,r,d=document,O=window;if(window.BOOMR.snippetMethod=e?"if":"i",t=function(e,n){var t=d.createElement("script");t.id=n||"boomr-if-as",t.src=window.BOOMR.url,BOOMR_lstart=(new Date).getTime(),e=e||d.body,e.appendChild(t)},!window.addEventListener&&window.attachEvent&&navigator.userAgent.match(/MSIE [67]\./))return window.BOOMR.snippetMethod="s",void t(i.parentNode,"boomr-async");a=document.createElement("IFRAME"),a.src="about:blank",a.title="",a.role="presentation",a.loading="eager",r=(a.frameElement||a).style,r.width=0,r.height=0,r.border=0,r.display="none",i.parentNode.appendChild(a);try{O=a.contentWindow,d=O.document.open()}catch(_){n=document.domain,a.src="javascript:var d=document.open();d.domain='"+n+"';void(0);",O=a.contentWindow,d=O.document.open()}if(n)d._boomrl=function(){this.domain=n,t()},d.write("<bo"+"dy onload='document._boomrl();'>");else if(O._boomrl=function(){t()},O.addEventListener)O.addEventListener("load",O._boomrl,!1);else if(O.attachEvent)O.attachEvent("onload",O._boomrl);d.close()}function a(e){window.BOOMR_onload=e&&e.timeStamp||(new Date).getTime()}if(!window.BOOMR||!window.BOOMR.version&&!window.BOOMR.snippetExecuted){window.BOOMR=window.BOOMR||{},window.BOOMR.snippetStart=(new Date).getTime(),window.BOOMR.snippetExecuted=!0,window.BOOMR.snippetVersion=12,window.BOOMR.url=n+"GKZXC-NS3SU-A7VFH-HKBHM-U7LKH";var i=document.currentScript||document.getElementsByTagName("script")[0],o=!1,r=document.createElement("link");if(r.relList&&"function"==typeof r.relList.supports&&r.relList.supports("preload")&&"as"in r)window.BOOMR.snippetMethod="p",r.href=window.BOOMR.url,r.rel="preload",r.as="script",r.addEventListener("load",e),r.addEventListener("error",function(){t(!0)}),setTimeout(function(){if(!o)t(!0)},3e3),BOOMR_lstart=(new Date).getTime(),i.parentNode.appendChild(r);else t(!1);if(window.addEventListener)window.addEventListener("load",a,!1);else if(window.attachEvent)window.attachEvent("onload",a)}}(),"".length>0)if(e&&"performance"in e&&e.performance&&"function"==typeof e.performance.setResourceTimingBufferSize)e.performance.setResourceTimingBufferSize();!function(){if(BOOMR=e.BOOMR||{},BOOMR.plugins=BOOMR.plugins||{},!BOOMR.plugins.AK){var n=""=="true"?1:0,t="",a="bdpnbeqx2cugez2b6cgq-f-d1ad45858-clientnsv4-s.akamaihd.net",i="false"=="true"?2:1,o={"ak.v":"39","ak.cp":"61004","ak.ai":parseInt("271834",10),"ak.ol":"0","ak.cr":4,"ak.ipv":4,"ak.proto":"http/1.1","ak.rid":"1d0443fc","ak.r":50230,"ak.a2":n,"ak.m":"dsca","ak.n":"essl","ak.bpcip":"8.222.208.0","ak.cport":40694,"ak.gh":"23.39.162.18","ak.quicv":"","ak.tlsv":"tls1.2","ak.0rtt":"","ak.0rtt.ed":"","ak.csrc":"-","ak.acc":"reno","ak.t":"1732374669","ak.ak":"hOBiQwZUYzCg5VSAfCLimQ==tbf9zcKHjfMyf9UdOjT3Qt7H7/KPFC4OpxwNt/lypk5/ZopvryDkGgnRWnlKMjy39asb8mj8zP71OTLD4D0T+2nCAtjUsMIu3M4DOEwo52jEr1ZFP8UkM5tqumN1W0RSUgGC3lMPRvLGCMzU4nUuIfSpoNeBYl3hhMPTErREoUS0Y1NkjmWCABih8PYlCHty+W6syTRq6AbgznKIRMIcyHgNp7X4Bo9C5Qw8G2SMHzBHMk5HJvzhu6eue0UT6zG+PCBuLnF9MOUSzxmtcvO0VNoSbi6pX6B3wlIdLVBOdNj6hPX0i2eFQ09iCUAjaFseX80O4Mh7Ja6GQYGFlr9ZbWZaqJCy5salz2MvQ6G/K2YVqcV31dll7E53cXbzy0g0PqwH/XrmO59SjLYAGjFOW2AiHmCY9wJ3h4GbigJidPU=","ak.pv":"517","ak.dpoabenc":"","ak.tf":i};if(""!==t)o["ak.ruds"]=t;var r={i:!1,av:function(n){var t="http.initiator";if(n&&(!n[t]||"spa_hard"===n[t]))o["ak.feo"]=void 0!==e.aFeoApplied?1:0,BOOMR.addVar(o)},rv:function(){var e=["ak.bpcip","ak.cport","ak.cr","ak.csrc","ak.gh","ak.ipv","ak.m","ak.n","ak.ol","ak.proto","ak.quicv","ak.tlsv","ak.0rtt","ak.0rtt.ed","ak.r","ak.acc","ak.t","ak.tf"];BOOMR.removeVar(e)}};BOOMR.plugins.AK={akVars:o,akDNSPreFetchDomain:a,init:function(){if(!r.i){var e=BOOMR.subscribe;e("before_beacon",r.av,null,null),e("onbeacon",r.rv,null,null),r.i=!0}return this},is_complete:function(){return!0}}}}()}(window);</script></head> <body id="wcq" class=" fw-res cdc-eot cdc-eot-toc cdc-transform networking-solutions-island-of-content-event "> <div id="fw-skiplinks"> <ul class="container"> <li><a id="skiplink-content" href="#fw-content">Skip to content</a></li> <li><a id="skiplink-search" href="#">Skip to search</a></li> <li><a id="skiplink-footer" href="#fw-footer-v2" class="last">Skip to footer</a></li> </ul> </div> <script type="module" src="/site/web-components/us/en/cdc-header.js"></script> <cdc-header></cdc-header> <nav class="fw-c-header__seo-links" aria-hidden="true" style="display:none"> <ul> <li><a tabindex="-1" href="https://www.cisco.com/site/us/en/index.html">Cisco.com Worldwide</a></li> <li><a tabindex="-1" href="/c/en/us/products/index.html">Products and Services</a></li> <li><a tabindex="-1" href="https://www.cisco.com/site/us/en/solutions/index.html">Solutions</a></li> <li><a tabindex="-1" href="/c/en/us/support/index.html">Support</a></li> <li><a tabindex="-1" href="/c/en/us/training-events.html">Learn</a></li> <li><a tabindex="-1" href="//www.cisco.com/c/en/us/about/sitemap.html">Explore Cisco</a></li> <li><a tabindex="-1" href="/c/en/us/buy.html">How to Buy</a></li> <li><a tabindex="-1" href="https://www.cisco.com/site/us/en/partners/index.html?dtid=odicdc001129">Partners Home</a></li> <li><a tabindex="-1" href="https://www.cisco.com/site/us/en/partners/cisco-partner-program/index.html?ccid=cc000864&dtid=odiprc001129">Partner Program</a></li> <li><a tabindex="-1" href="https://www.cisco.com/site/us/en/partners/support-help/index.html">Support</a></li> <li><a tabindex="-1" href="https://www.cisco.com/site/us/en/partners/tools/index.html?dtid=odiprc001129">Tools</a></li> <li><a tabindex="-1" href="https://locatr.cloudapps.cisco.com/WWChannels/LOCATR/pf/index.jsp#/">Find a Cisco Partner</a></li> <li><a tabindex="-1" href="https://www.cisco.com/site/us/en/partners/connect-with-a-partner/index.html?ccid=cc000864&dtid=odiprc001129">Meet our Partners</a></li> <li><a tabindex="-1" href="https://www.cisco.com/site/us/en/partners/index.html?dtid=odicdc001129">Become a Cisco Partner</a></li> </ul> </nav> <div id="fw-content" class="container grid"> <div class="row full" data-owner="ID"> <div class="col full "> <h1 id="fw-pagetitle" class="" data-owner="ID">Cisco Catalyst SD-WAN and Microsoft SSE Integration Solution Brief</h1> <div id="fw-backtolink" data-owner="ID"> <div><span></span></div> <div> <a href="https://www.cisco.com/c/en/us/solutions/enterprise-networks/sd-wan/sd-wan-security.html" target="_self">Back to Home</a> </div> </div> </div> </div> <!--googleon: index--><!--googleon: snippet--> <script type="text/javascript"> // initialize dictionary for i18n var pagelanguage = "en_us".replace("_","-"); var pagelocale = pagelanguage; Granite.I18n.setLocale(pagelocale.toLowerCase()); Granite.I18n.setUrlPrefix("/etc/designs/cdc/fw/w/responsive_components/eot/i18n/"); Granite.I18n.setUrlSuffix(".1.json"); cdc.util.ensureNamespace("cdc.rc"); cdc.rc.isEotToc = true; </script> <div class="row full blowout"> <div class="col full"> </div> </div> <div class="row full"> <div class="col full top docId"> <script> if (typeof(cdc) == "undefined") cdc={}; if (typeof(cdc.translations) == "undefined") cdc.translations={}; </script> <div class="docHeaderComponent base-blowout"> <div class="linksRow"> <div class="toolbar"> <div class="noprint" id="saveModule"> <script type="text/javascript"> cdc.util.ensureNamespace("cdc.rc.savedoc"); cdc.rc.savedoc.isLoggedIn = false; cdc.rc.savedoc.save = "Save"; cdc.rc.savedoc.saved = "Saved"; </script> <button class="save" aria-expanded="false"> <label>Save</label> </button> </div> <div class="saveDocumentMessage login cdc-expandPanel" role="region" aria-live="polite"> <a href="/c/login/index.html?referer=/c/en/us/solutions/collateral/enterprise-networks/sd-wan/catalyst-sd-wan-ms-entra-sse-int-sb.html">Log in</a> to Save Content </div> <!-- Translation Selctor --> <!-- Translation Selector is used on EOT and Books pages. if a page has a locale of en_US then it will provide a list of avaible translations, if its a translated page (non english locale) then provide the link to the english locale. --> <div class="noprint downloadDocument" ><button type="button" class="view-download-list-link anchor" aria-expanded="false"><div class="toolbarIcon downloadIcon"></div><label class="iconLabel">Download</label></button></div> <div class="noprint printDocument js-only"><button type="button" class="anchor printPage"><div class="toolbarIcon printIcon"></div><label class="iconLabel">Print</label></button></div> </div> </div> <!-- Where translation selector list of available languages is set up for EOT pages, for the javascript to work must have <ul id="translationsList"> </ul> --> <script language="javascript"> cdc.translations.map = "{en-us=https://www.cisco.com/c/en/us/solutions/collateral/enterprise-networks/sd-wan/catalyst-sd-wan-ms-entra-sse-int-sb.html, x-default=https://www.cisco.com/c/en/us/solutions/collateral/enterprise-networks/sd-wan/catalyst-sd-wan-ms-entra-sse-int-sb.html}";//storing the map for use in the JS cdc.translations.locale="en_us"; </script> <div class="availableLanguagesList"> <h3>Available Languages</h3> <ul id="translationsList"> </ul> </div> <div id="download-list-container" class="noprint panelRow" role="region" aria-live="polite"> <div class='download-list' aria-label="Download Options"> <h3>Download Options</h3> <ul> <li> <div class="fileText"> <a href="/c/en/us/solutions/collateral/enterprise-networks/sd-wan/catalyst-sd-wan-ms-entra-sse-int-sb.pdf" class="download-pdf"><div class="fileIcon pdfIcon"></div>PDF</a> <span class="docSize">(538.9 KB)</span> <br /> <span class="description">View with Adobe Reader on a variety of devices</span> </div> </li> </ul> </div> </div> <div class="infobarClearFix"> <div class="infobar"> <div class="updatedDate"><span>Updated:</span>September 17, 2024</div> </div> </div> </div> <script> jQuery(document).ready(function(){ if(jQuery("body").hasClass("cdc-eot-toc") && jQuery(".cdc-eot-toc").find(".DocumentHistory").length > 0){ jQuery(".cdc-eot-toc .seeRevisions").show(); if(jQuery(window).width() >= 768){ jQuery(".cdc-eot-toc .updatedDate").nextAll(".bullet").show(); } }else{ jQuery(".cdc-eot-toc .infobar .bullet").hide(); jQuery(".cdc-eot-toc .seeRevisions"); jQuery(".cdc-eot-toc .updatedDate"); } }) </script> <div class="disclaimers marketing"> <div class="disclaimerButtons"> <div class="aboutBias"> <button aria-expanded="false" >Bias-Free Language</button> </div> </div> <div class="biasfreeContent panel"> <h3>Bias-Free Language</h3> <p>The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. <a href="https://www.cisco.com/c/en/us/about/social-justice/inclusive-language-policy.html">Learn more</a> about how Cisco is using Inclusive Language.</p> </div> </div><!-- disclaimers --> <div id="luh-holder" class="dmc-inpage-nav noprint"> </div> </div> </div> <div class="row wide-narrow flip cdc-eot-toc-banner"> <div class="col wide"> <div class="defaultBrandImage"></div> <link rel="stylesheet" href="/etc/designs/cdc/dmr/mbox/mbox.min.css" type="text/css"> <div data-version="DM:components/dgbanner/banner-mbox:V1.5.1"> <div class="mboxDefault"></div> <script type="text/javascript"> var test=""; if(test!=undefined && test.trim().length>0){ mboxCreate('en-us_dg_large_eot','type=default',''); }else{ mboxCreate('en-us_dg_large_eot','type=default'); } </script> </div> <script src="/etc/designs/cdc/dmr/libs/u.min.js"></script> <script src="/etc/designs/cdc/dmr/libs/nmsp.min.js"></script> <script src="/etc/designs/cdc/dmr/libs/log.min.js"></script> <script src="/etc/designs/cdc/dmr/libs/metrics.min.js"></script> <!-- DM:components/html/htmlblob:V1.2.6 --> <style> .cdc-eot-toc #fw-pagetitle, .cdc-ic-ebook #fw-pagetitle { width: 100% !important; } .cdc-eot-toc #eot-doc-wrapper div.pDefault { font-size: 14px !important; font-weight: bold !important; } .cdc-eot-toc #eot-doc-wrapper p.pBulletCMT{ text-indent: -18px !important; padding-left: 15px !important; line-height: 1.5 !important; margin-bottom: 15px !important; } .cdc-eot-toc #eot-doc-wrapper .pBody { line-height: 1.5 !important; margin-bottom: 15px !important; } #eot-doc-wrapper img{ height: 100% !important; } </style> <div id="overDocWrapper" class="doctool noprint"> <script type="text/javascript"> $( document ).ready(function() { var fwt_element = $("#fw-content").find(".fwt-fatfooter"); fwt_element.addClass("noprint"); }); if (window.cdc === undefined) { window.cdc = {}; } if (cdc.rac === undefined) { cdc.rac = {}; } if (cdc.rac.getOverrideConfig === undefined) { cdc.rac.getOverrideConfig = {}; } else { //var configData = { "ratingsOnly": false, "objId":31, "source":"dummy source" }; var configData = { "ratingsOnly": false}; cdc.rac.getOverrideConfig(configData); } </script> <script> if (typeof(cdc) == "undefined") cdc={}; if (typeof(cdc.translations) == "undefined") cdc.translations={}; </script> <div class="docHeaderComponent base-blowout"> <div class="linksRow"> <div class="toolbar"> <div class="noprint" id="saveModule"> <script type="text/javascript"> cdc.util.ensureNamespace("cdc.rc.savedoc"); cdc.rc.savedoc.isLoggedIn = false; cdc.rc.savedoc.save = "Save"; cdc.rc.savedoc.saved = "Saved"; </script> <button class="save" aria-expanded="false"> <label>Save</label> </button> </div> <div class="saveDocumentMessage login cdc-expandPanel" role="region" aria-live="polite"> <a href="/c/login/index.html?referer=/c/en/us/solutions/collateral/enterprise-networks/sd-wan/catalyst-sd-wan-ms-entra-sse-int-sb.html">Log in</a> to Save Content </div> <!-- Translation Selctor --> <!-- Translation Selector is used on EOT and Books pages. if a page has a locale of en_US then it will provide a list of avaible translations, if its a translated page (non english locale) then provide the link to the english locale. --> <div class="noprint downloadDocument" ><button type="button" class="view-download-list-link anchor" aria-expanded="false"><div class="toolbarIcon downloadIcon"></div><label class="iconLabel">Download</label></button></div> <div class="noprint printDocument js-only"><button type="button" class="anchor printPage"><div class="toolbarIcon printIcon"></div><label class="iconLabel">Print</label></button></div> </div> </div> <!-- Where translation selector list of available languages is set up for EOT pages, for the javascript to work must have <ul id="translationsList"> </ul> --> <script language="javascript"> cdc.translations.map = "{en-us=https://www.cisco.com/c/en/us/solutions/collateral/enterprise-networks/sd-wan/catalyst-sd-wan-ms-entra-sse-int-sb.html, x-default=https://www.cisco.com/c/en/us/solutions/collateral/enterprise-networks/sd-wan/catalyst-sd-wan-ms-entra-sse-int-sb.html}";//storing the map for use in the JS cdc.translations.locale="en_us"; </script> <div class="availableLanguagesList"> <h3>Available Languages</h3> <ul id="translationsList"> </ul> </div> <div id="download-list-container" class="noprint panelRow" role="region" aria-live="polite"> <div class='download-list' aria-label="Download Options"> <h3>Download Options</h3> <ul> <li> <div class="fileText"> <a href="/c/en/us/solutions/collateral/enterprise-networks/sd-wan/catalyst-sd-wan-ms-entra-sse-int-sb.pdf" class="download-pdf"><div class="fileIcon pdfIcon"></div>PDF</a> <span class="docSize">(538.9 KB)</span> <br /> <span class="description">View with Adobe Reader on a variety of devices</span> </div> </li> </ul> </div> </div> <div class="infobarClearFix"> <div class="infobar"> <div class="updatedDate"><span>Updated:</span>September 17, 2024</div> </div> </div> </div> <script> jQuery(document).ready(function(){ if(jQuery("body").hasClass("cdc-eot-toc") && jQuery(".cdc-eot-toc").find(".DocumentHistory").length > 0){ jQuery(".cdc-eot-toc .seeRevisions").show(); if(jQuery(window).width() >= 768){ jQuery(".cdc-eot-toc .updatedDate").nextAll(".bullet").show(); } }else{ jQuery(".cdc-eot-toc .infobar .bullet").hide(); jQuery(".cdc-eot-toc .seeRevisions"); jQuery(".cdc-eot-toc .updatedDate"); } }) </script> </div> </div> <div class="col narrow sticky noprint"> <span id="tocTop"></span> <section id="eotTocNav"> <div id="navWrapper"> </div> <div id="tocSearch"></div> <div id="eotListWrapper" data-config-metrics-group="Table of Contents"> <script type="text/javascript"> cdc.util.ensureNamespace("cdc.rc"); cdc.rc.toctitle = "Table of Contents"; </script> <h4 id="eotTocToc">Table of Contents</h4> <ul> <li><a class="head1" href="#Challenge" title="Challenge">Challenge</a></li> <li><a class="head1" href="#Overview" title="Overview">Overview</a></li> <li><a class="head1" href="#Solution" title="Solution">Solution</a></li> <li><a class="head1" href="#Keybenefits" title="Keybenefits">Key benefits</a></li> <li><a class="head1" href="#Tryitnow" title="Tryitnow">Try it now</a></ul> </div> <!--<div id="eotTocSearch"></div> <div id="eotTocToc"></div> --> <script type="text/javascript"> cdc.util.ensureNamespace("cdc.rc.innerSearch"); cdc.rc.innerSearch.hintText = "Search"; cdc.util.ensureNamespace("cdc.rc.tableOfContents"); cdc.rc.tableOfContents.label = "Table of Contents"; </script> </section> </div> </div> <div class="row narrow-wide"> <!--style below is added to fix DE297691:TOC Headings are not clickable in Firefox/Edge Browsers --> <div class="col narrow noprint" style="position: relative;z-index: -1;"> </div> <div class="col wide document"> <div id="eot-doc-wrapper"> <html> <head> <script>!function(e){var n="https://s.go-mpulse.net/boomerang/";if("False"=="True")e.BOOMR_config=e.BOOMR_config||{},e.BOOMR_config.PageParams=e.BOOMR_config.PageParams||{},e.BOOMR_config.PageParams.pci=!0,n="https://s2.go-mpulse.net/boomerang/";if(window.BOOMR_API_key="GKZXC-NS3SU-A7VFH-HKBHM-U7LKH",function(){function e(){if(!o){var e=document.createElement("script");e.id="boomr-scr-as",e.src=window.BOOMR.url,e.async=!0,i.parentNode.appendChild(e),o=!0}}function t(e){o=!0;var n,t,a,r,d=document,O=window;if(window.BOOMR.snippetMethod=e?"if":"i",t=function(e,n){var t=d.createElement("script");t.id=n||"boomr-if-as",t.src=window.BOOMR.url,BOOMR_lstart=(new Date).getTime(),e=e||d.body,e.appendChild(t)},!window.addEventListener&&window.attachEvent&&navigator.userAgent.match(/MSIE [67]\./))return window.BOOMR.snippetMethod="s",void t(i.parentNode,"boomr-async");a=document.createElement("IFRAME"),a.src="about:blank",a.title="",a.role="presentation",a.loading="eager",r=(a.frameElement||a).style,r.width=0,r.height=0,r.border=0,r.display="none",i.parentNode.appendChild(a);try{O=a.contentWindow,d=O.document.open()}catch(_){n=document.domain,a.src="javascript:var d=document.open();d.domain='"+n+"';void(0);",O=a.contentWindow,d=O.document.open()}if(n)d._boomrl=function(){this.domain=n,t()},d.write("<bo"+"dy onload='document._boomrl();'>");else if(O._boomrl=function(){t()},O.addEventListener)O.addEventListener("load",O._boomrl,!1);else if(O.attachEvent)O.attachEvent("onload",O._boomrl);d.close()}function a(e){window.BOOMR_onload=e&&e.timeStamp||(new Date).getTime()}if(!window.BOOMR||!window.BOOMR.version&&!window.BOOMR.snippetExecuted){window.BOOMR=window.BOOMR||{},window.BOOMR.snippetStart=(new Date).getTime(),window.BOOMR.snippetExecuted=!0,window.BOOMR.snippetVersion=12,window.BOOMR.url=n+"GKZXC-NS3SU-A7VFH-HKBHM-U7LKH";var i=document.currentScript||document.getElementsByTagName("script")[0],o=!1,r=document.createElement("link");if(r.relList&&"function"==typeof r.relList.supports&&r.relList.supports("preload")&&"as"in r)window.BOOMR.snippetMethod="p",r.href=window.BOOMR.url,r.rel="preload",r.as="script",r.addEventListener("load",e),r.addEventListener("error",function(){t(!0)}),setTimeout(function(){if(!o)t(!0)},3e3),BOOMR_lstart=(new Date).getTime(),i.parentNode.appendChild(r);else t(!1);if(window.addEventListener)window.addEventListener("load",a,!1);else if(window.attachEvent)window.attachEvent("onload",a)}}(),"".length>0)if(e&&"performance"in e&&e.performance&&"function"==typeof e.performance.setResourceTimingBufferSize)e.performance.setResourceTimingBufferSize();!function(){if(BOOMR=e.BOOMR||{},BOOMR.plugins=BOOMR.plugins||{},!BOOMR.plugins.AK){var n=""=="true"?1:0,t="",a="bdpnbeqx2cugez2b6cgq-f-d1ad45858-clientnsv4-s.akamaihd.net",i="false"=="true"?2:1,o={"ak.v":"39","ak.cp":"61004","ak.ai":parseInt("271834",10),"ak.ol":"0","ak.cr":4,"ak.ipv":4,"ak.proto":"http/1.1","ak.rid":"1d0443fc","ak.r":50230,"ak.a2":n,"ak.m":"dsca","ak.n":"essl","ak.bpcip":"8.222.208.0","ak.cport":40694,"ak.gh":"23.39.162.18","ak.quicv":"","ak.tlsv":"tls1.2","ak.0rtt":"","ak.0rtt.ed":"","ak.csrc":"-","ak.acc":"reno","ak.t":"1732374669","ak.ak":"hOBiQwZUYzCg5VSAfCLimQ==tbf9zcKHjfMyf9UdOjT3Qt7H7/KPFC4OpxwNt/lypk5/ZopvryDkGgnRWnlKMjy39asb8mj8zP71OTLD4D0T+2nCAtjUsMIu3M4DOEwo52jEr1ZFP8UkM5tqumN1W0RSUgGC3lMPRvLGCMzU4nUuIfSpoNeBYl3hhMPTErREoUS0Y1NkjmWCABih8PYlCHty+W6syTRq6AbgznKIRMIcyHgNp7X4Bo9C5Qw8G2SMHzBHMk5HJvzhu6eue0UT6zG+PCBuLnF9MOUSzxmtcvO0VNoSbi6pX6B3wlIdLVBOdNj6hPX0i2eFQ09iCUAjaFseX80O4Mh7Ja6GQYGFlr9ZbWZaqJCy5salz2MvQ6G/K2YVqcV31dll7E53cXbzy0g0PqwH/XrmO59SjLYAGjFOW2AiHmCY9wJ3h4GbigJidPU=","ak.pv":"517","ak.dpoabenc":"","ak.tf":i};if(""!==t)o["ak.ruds"]=t;var r={i:!1,av:function(n){var t="http.initiator";if(n&&(!n[t]||"spa_hard"===n[t]))o["ak.feo"]=void 0!==e.aFeoApplied?1:0,BOOMR.addVar(o)},rv:function(){var e=["ak.bpcip","ak.cport","ak.cr","ak.csrc","ak.gh","ak.ipv","ak.m","ak.n","ak.ol","ak.proto","ak.quicv","ak.tlsv","ak.0rtt","ak.0rtt.ed","ak.r","ak.acc","ak.t","ak.tf"];BOOMR.removeVar(e)}};BOOMR.plugins.AK={akVars:o,akDNSPreFetchDomain:a,init:function(){if(!r.i){var e=BOOMR.subscribe;e("before_beacon",r.av,null,null),e("onbeacon",r.rv,null,null),r.i=!0}return this},is_complete:function(){return!0}}}}()}(window);</script></head> <body> <code><script type="text/javascript"></script> <link rel="stylesheet" href="wemdcmt.css"/> <link rel="stylesheet" href="/etc/designs/cdc/transformation/wemdcmt.css"/></code> <div class="WordSection1"> <p class="pBody"> </p> <p class="pToC_Subhead1" style="page-break-before:always"><a name="_Toc176274951">Challenge</a></p> <p class="pBody">Enterprise WAN requirements have evolved with hybrid work becoming the norm, requiring users to connect from anywhere and use applications across hybrid multicloud and Software-as-a- Service (SaaS) environments. Both on-premises and cloud workload security are crucial, especially for secure access to Microsoft applications and other critical office applications and the internet. Organizations need a solution that protects against advanced threats, optimizes application performance, and simplifies network management.</p> <p class="pToC_Subhead1"><a name="_Toc176274952">Overview</a></p> <p class="pBody">Cisco Catalyst SD-WAN and Microsoft’s Security Service Edge (SSE) solution integration combines Cisco’s robust SD-WAN capabilities with Microsoft’s SSE solution to provide secure access to the internet and Microsoft SaaS applications. This integration enhances the security of branch internet traffic by efficiently redirecting it through Microsoft Entra Internet Access, part of Microsoft’s SSE solution, for secure inspection, helping ensure that traffic from branch edges to the public internet or SaaS applications is thoroughly protected.</p> <p class="pToC_Subhead1"><a name="_Toc176274953">Solution</a></p> <p class="pBody">Cisco Catalyst SD-WAN and Microsoft’s SSE solution integration delivers a powerful, secure, and efficient solution for managing branch internet traffic. This integration works by providing seamless connectivity from SD-WAN branch edges to Microsoft’s SSE solution. </p> <p class="pBody">Here’s how it works: </p> <p class="pBulletCMT" style="font-style: normal; font-variant: normal; font-weight: normal;margin-bottom: 3pt; margin-right: 0pt; margin-top: 0pt; text-decoration: none; text-transform: none"><span style="font-size:7.0pt;font-family:"Arial","sans-serif";position:relative;top:-.5pt">●<span style="font:7.0pt "Times New Roman""> </span></span><b>Traffic redirection:</b> Relevant traffic from SD-WAN branch edges is efficiently redirected to Microsoft’s SSE solution. </p> <p class="pBulletCMT" style="font-style: normal; font-variant: normal; font-weight: normal;margin-bottom: 3pt; margin-right: 0pt; margin-top: 0pt; text-decoration: none; text-transform: none"><span style="font-size:7.0pt;font-family:"Arial","sans-serif";position:relative;top:-.5pt">●<span style="font:7.0pt "Times New Roman""> </span></span><b>Secure tunnels:</b> Secure tunnels are created for advanced inspection, helping ensure that traffic to the internet and Microsoft SaaS applications is securely managed. </p> <p class="pBulletCMT" style="font-style: normal; font-variant: normal; font-weight: normal;margin-bottom: 3pt; margin-right: 0pt; margin-top: 0pt; text-decoration: none; text-transform: none"><span style="font-size:7.0pt;font-family:"Arial","sans-serif";position:relative;top:-.5pt">●<span style="font:7.0pt "Times New Roman""> </span></span><b>Inspection and protection:</b> Microsoft’s SSE solution inspects the traffic to provide robust protection against threats. </p> <p class="pBulletCMT" style="font-style: normal; font-variant: normal; font-weight: normal;margin-bottom: 3pt; margin-right: 0pt; margin-top: 0pt; text-decoration: none; text-transform: none"><span style="font-size:7.0pt;font-family:"Arial","sans-serif";position:relative;top:-.5pt">●<span style="font:7.0pt "Times New Roman""> </span></span><b>Policy application:</b> Policies can be applied to each segment of the network, enabling tailored security measures.</p> <p class="pBody"><img width="576" height="627" id="Picture 3" src="/c/dam/en/us/solutions/collateral/enterprise-networks/sd-wan/catalyst-sd-wan-ms-entra-sse-int-sb.docx/_jcr_content/renditions/catalyst-sd-wan-ms-entra-sse-int-sb_0.png" alt="Catalyst SD-WAN and Microsoft’s SSE solution integration"/></p> <div class=" pDefault"> Figure 1. <span style="font:7.0pt "Times New Roman""> </span> </div> <p class="FigureCaptionText">Catalyst SD-WAN and Microsoft’s SSE solution integration</p> <p class="pToC_Subhead1"><a name="_Toc176274954">Key benefits</a></p> <p class="pBulletCMT" style="font-style: normal; font-variant: normal; font-weight: normal;margin-bottom: 3pt; margin-right: 0pt; margin-top: 0pt; text-decoration: none; text-transform: none"><span style="font-size:7.0pt;font-family:"Arial","sans-serif";position:relative;top:-.5pt">●<span style="font:7.0pt "Times New Roman""> </span></span>Comprehensive security for branch internet traffic: Securely redirect branch internet traffic to Microsoft Entra for advanced inspection and protection against internet-based threats. </p> <p class="pBulletCMT" style="font-style: normal; font-variant: normal; font-weight: normal;margin-bottom: 3pt; margin-right: 0pt; margin-top: 0pt; text-decoration: none; text-transform: none"><span style="font-size:7.0pt;font-family:"Arial","sans-serif";position:relative;top:-.5pt">●<span style="font:7.0pt "Times New Roman""> </span></span>Enhanced security and protection: Help ensure secure access to public internet and Microsoft SaaS applications. </p> <p class="pBulletCMT" style="font-style: normal; font-variant: normal; font-weight: normal;margin-bottom: 3pt; margin-right: 0pt; margin-top: 0pt; text-decoration: none; text-transform: none"><span style="font-size:7.0pt;font-family:"Arial","sans-serif";position:relative;top:-.5pt">●<span style="font:7.0pt "Times New Roman""> </span></span>Simplified deployment: Deploy a seamless, comprehensive, end-to-end solution for SD-WAN and security. </p> <p class="pBody" style="margin-top:7.0pt">This collaboration between Cisco<span class="Superscript"><sup class=" cSuperscript">®</sup></span> networking and Microsoft Security not only strengthens the security of branch internet traffic but also simplifies management, reduces operational complexity, and enhances the user experience. The result is a comprehensive, secure connectivity solution that offers peace of mind and operational efficiency for enterprise customers.</p> <p class="pToC_Subhead1" style="page-break-before:always"><a name="_Toc176274955">Try it now</a></p> <p class="pBody">This integration has been thoroughly tested and validated for deployment with Cisco IOS<span class="Superscript"><sup class=" cSuperscript">®</sup></span> XE SD-WAN routers running software versions 17.12 or 20.12, alongside the Microsoft Entra cloud dashboard. </p> <p class="pBody">Protect your network with the power of Cisco Catalyst<span class="Superscript"><sup class=" cSuperscript">™</sup></span> SD-WAN and Microsoft’s SSE solution: Read the <a href="https://www.cisco.com/c/en/us/solutions/collateral/enterprise-networks/sd-wan/catalyst-sd-wan-ms-sse-int-ug.html">user guide</a>. </p> <p class="pSubhead2CMT">About Microsoft Entra </p> <p class="pBody">Microsoft Entra Internet Access and Microsoft Entra Private Access are integral components of Microsoft’s Security Service Edge (SSE) solution. Microsoft Entra Internet Access ensures secure access to internet and SaaS apps while safeguarding users, devices, and data against internet-based threats. This document covers the Internet Access use case. <a href="https://learn.microsoft.com/en-us/entra/architecture/sse-deployment-guide-intro">https://learn.microsoft.com/en-us/entra/architecture/sse-deployment-guide-intro</a></p> <p class="pSubhead2CMT">About Cisco Catalyst SD-WAN </p> <p class="pBody">Catalyst SD-WAN connects any user to any application with integrated capabilities for multicloud, security, predictive operations, and enhanced network visibility—all on a Secure Access Service Edge (SASE)-enabled architecture. Catalyst SD-WAN enables you to transform your IT infrastructure by delivering network connectivity that’s cloud-agnostic, efficient, and simpler to manage, with lower operational costs and increased control and visibility across the entire digital service delivery chain. <a href="https://www.cisco.com/site/us/en/solutions/networking/sdwan/index.html">https://www.cisco.com/site/us/en/solutions/networking/sdwan/index.html</a></p> <p class="pBody"> </p> <p class="pBody"> </p> <p class="pBody"> </p> </div> </body> </html> <cdc:do action="com.cisco.wem.framework.service.command.eotcontent.EOTResponsiveContent@25b3dabc" returnTypedAs="eotResponsiveContainerVo" id="eotResponsiveContainerVo" /> <div class="row full visitedlinks" style="padding: 0px; margin:0px"> <div class="col full" > </div> </div> </div> <script> if (window.cdc === undefined) { cdc = {}; } if (cdc.eot === undefined) { cdc.eot = {}; } cdc.eot.isEot = true; cdc.eot.isToc = true; jQuery(document).ready(function () { if (jQuery('.unpublished').length > 0) { let lastRel = "1.0"; if (jQuery('.published').length > 0) { lastRel = Number(jQuery('.published td')[0].innerText) + 1 + ".0"; } jQuery('.preview_revision').text(lastRel); } const linkItemsLen = jQuery("#eot-doc-wrapper link[rel='stylesheet']").length; function addNewTocStyleSheet() { let fileName="/etc/designs/cdc/transformation/wemdcmt_responsive.css", $head = jQuery("head"), linkElement = "<link rel='stylesheet' href='"+fileName+"' type='text/css' >"; $head.append(linkElement); } if (cdc.eot.isToc && !linkItemsLen) { addNewTocStyleSheet(); } else if (cdc.eot.isEot) { jQuery("#eot-doc-wrapper link[rel='stylesheet']").each(function () { const linkTag = jQuery(this), hrefVal = jQuery(linkTag).attr("href"); if (hrefVal != undefined && hrefVal.indexOf("support-responsive.css") == -1 && hrefVal.indexOf("_responsive.css") == -1) { let fileName = hrefVal.substr(hrefVal.lastIndexOf("/") + 1, hrefVal.length).split(".css")[0]; const filePath = "/etc/designs/cdc/transformation/"; if (fileName == "ccimr") { fileName = "techdocs_responsive"; } else if (fileName == "support-docs") { fileName = "support-responsive"; } else if (fileName == "framework") { fileName = "responsiveframework"; } else if (fileName == "dcmt") { fileName = "wemdcmt_responsive"; } else if (fileName == "techdocs_85_11_word") { fileName = "techdocs_85_11_word"; if (cdc.eot.isToc) { addNewTocStyleSheet(); } } else { fileName += "_responsive"; } jQuery(linkTag).attr("href", filePath + fileName + ".css"); } if (hrefVal.indexOf("support-responsive.css") > -1) { jQuery(linkTag).attr("href", "/etc/designs/cdc/transformation/support-responsive.css"); } }); jQuery("#eot-doc-wrapper > table").wrap("<div></div>"); jQuery("#eot-doc-wrapper table:not('.olh_note')").parent().css({ overflowX: "auto" }); } }); </script> <div class="noprint"> </div> <div class="noprint"> <script> console.log("Getting INVALID_TAGs from data object") </script> </div> <div id="learnMore" class="noprint"> <h3>Learn more</h3> </div> <div class="row halves noprint"> <div class="col half showComponent"> <div class="eot-vav"> <ul> </ul> </div> </div> <!-- Fix for US251354 --> <div class="col half"></div> </div> <div class="noprint"> </div> </div> </div> <!--googleoff: index--><!--googleoff: snippet--> <!-- end: responsive fat footer re-use wrapper--> </div> <script type="module" src="/site/web-components/us/en/cdc-footer.js"></script> <cdc-footer></cdc-footer> <script type="text/javascript"> if(document.querySelector('#privacy-manager')!=null){ document.querySelector('#privacy-manager').href='#cookies'; } </script> <div id="fw-overlay"></div> <script src="/etc/designs/cdc/clientlibs/responsive/js/responsive.min.js"></script> <!-- change to new clientlib, and metricsrules if applicable --> <script src="/etc/designs/cdc/fw/m/eot_metricsrule.js" type="text/javascript"></script> <script src="/etc/designs/cdc/fw/lib/jqmodal.js" type="text/javascript"></script> <!-- SiteCatalyst code version: H.24.4. --> <noscript><img src="//cisco.112.2o7.net/b/ss/cisco-mobile/5/12345" width="2" height="2" border="0" alt=""/></noscript> </body> </html>