BlueUP Connect
Your digital identity in the private network. No VPN, no configuration, no friction.
What is BlueUP Connect?
BlueUP Connect is a lightweight Zero Trust desktop access client. Once your administrator approves your access request, the client automatically displays all the services you are authorized to use — web applications, analytics tools, dashboards — and opens them with a single click.
It is not a VPN. It does not install network drivers. It does not expose any port to the outside. Every connection is cryptographically encrypted and the user's identity is validated on every request.
The problem it solves
Traditional remote access solutions (VPN, SSH tunnels, bastion hosts) have three fundamental problems:
| Problem | Impact |
|---|---|
| Complex configuration | Hours of IT support per user, frequent errors |
| Excessive privileges | VPN grants access to the entire network, not just what is needed |
| No visibility | You don't know who accesses what, or when |
BlueUP Connect inverts this paradigm: users only see exactly what they are authorized to access.
Access flow — 3 steps
1. Access request
The user downloads and installs BlueUP Connect, enters their email and submits an access request with justification. The system generates a ticket (#REQ-XXXX) and notifies the administrator.
User installs BlueUP Connect
└── "Request access"
└── email + name + justification
└── Ticket submitted — awaiting approval2. Approval and enrollment
The administrator reviews and approves the request in the administration panel. The system automatically provisions a unique cryptographic identity for the user and delivers it to the client.
Admin approves in BlueUPALM panel
└── System generates Ziti identity + certificate
└── Client receives credential automatically
└── Silent enrollment — no user intervention required3. Service dashboard
The client connects and displays the personalized catalog of services authorized for that user. Each service status is real-time.
┌──────────────────────────────────────────────────────┐
│ BlueUP Connect ● Online │
├──────────────────────────────────────────────────────┤
│ ● BlueUPALM — AML Platform [ Open ↗ ] │
│ ● Grafana — Observability [ Open ↗ ] │
│ ● Kibana — Audit Logs [ Open ↗ ] │
│ ○ Administration Panel [ No access ] │
└──────────────────────────────────────────────────────┘
● Available ○ Not authorizedUse cases
👤 Employee accessing internal tools
A compliance analyst accesses the AML platform, Grafana, and audit logs daily. With BlueUP Connect, they open the client and everything is available with one click — no VPN, no IP addresses to remember, no configuration.
📅 Temporary access for contractors
An identity is created with an expiration of N days. The contractor installs the client and receives restricted access to exactly the services they need. When the deadline expires, access is automatically revoked.
🔍 External auditor
The auditor needs read-only access to Grafana and audit records. They are provisioned with strict policies. The client shows exactly the authorized services — not one more.
Differences from a VPN
| Feature | Traditional VPN | BlueUP Connect |
|---|---|---|
| Network visibility | Full subnet access | Only explicitly authorized services |
| User configuration | Manual (split tunneling, routes, DNS) | Automatic after enrollment |
| Access revocation | Change password / deactivate user | Real-time, cryptographic, no password logs |
| Auditing | Firewall logs, hard to correlate | Every access logged with verified identity |
| Security model | Network perimeter | Zero Trust — no perimeter |
| Multi-tenant support | Complex | Native — different clients, same client binary |
Compatibility
| Platform | Status |
|---|---|
| 🍎 macOS (Intel + Apple Silicon) | ✅ Available |
| 🪟 Windows (x64) | ✅ Available |
| 🐧 Linux | 🔜 On roadmap |
Interested?
Want BlueUP Connect for your organization? Our team can set up a complete private network with your services in less than a week.