Take the work out of networking

Remote access from anywhere

Cradlepoint helps IT organizations maintain their sanity and budgets while addressing the growing need for remote access from anywhere. Whether keeping up with the demands of your remote and mobile workforce, connecting new remote offices, providing isolated access for contractors, or deploying a temporary network for a construction site or sales meeting, Cradlepoint NetCloud Engine makes it easy.

With Cradlepoint NetCloud Engine, you can build one or more virtual overlay networks to give groups of remote users segmented access to files and applications—whether in the data center or public cloud. Provide users with a seamless LAN experience while eliminating the hardware and headaches of a traditional VPN. Through the admin web console, you can provision users, devices and entire virtual networks in just a few clicks, and delete them just as fast.

From a security perspective, NetCloud Engine combines strong end-to-end encryption, auto-PKI and machine authentication with a fully cloaked private address space and micro-segmentation capabilities to offer the security of a private network over the public Internet.


  • Support for all modern devices: Windows, Mac, Linux, iOS and Android
  • Automatic user and device level ACLs
  • Multi-factor authentication: user (ID), device (token) and certificate (PKI) 
  • Auto-PKI — advanced elliptical curve algorithm, no configuration
  • AppScape provides virtual network functions as apps for geo-location, traffic monitoring, AD integration and custom DNS naming


  • Network virtualization enables new security model for cloud and mobile
  • Pay-as-you-grow, scale connectivity when and where you need it
  • Virtual overlay network, works with existing infrastructure
  • No hardware upgrades, scalable and aways up-to-date
Remote access from anywhere
Enterprise mobility, extend MDM

Enterprise mobility, extend MDM

NetCloud Engine is designed to address the unique challenges associated with providing secure access to critical files and applications from mobile devices, including Windows, Android and Apple iOS phones and tablets. 

Unlike traditional VPNs, you can deploy one or more virtual overlay networks to segregate mobile users and the specific servers they need access to—whether in the data center or public cloud—from everything else. This “quarantine” approach ensures that mobile devices are contained and mobile users cannot access unauthorized resources on data center or office LANs.

Enterprise mobility requires enterprise security. NetCloud Engine extends MDM by providing micro-segmentation capabilities and a fully cloaked private address space with outbound-only connections to eliminate the risk of exposing public IP addresses or inbound firewall ports. 

Key Features

  • Supports Windows, Android and iOS tablets and phones
  • Network virtualization and micro-segmentation enables quarantining of mobile devices
  • End-to-end encryption with device and certificate (PKI) authentication
  • Works with MDM and popular mobile apps for file and desktop access


  • Superior mobile security without the complexity of traditional VPNs
  • Pay-as-you-grow, scale mobile access when and where you need it
  • Virtual overlay network, works with existing infrastructure
  • No head-end hardware, scale without forklift upgrades

M2M and connected devices

Managed service and solution providers can use NetCloud Engine to securely connect, monitor and manage devices deployed on customer sites, in the field, or anywhere in the world. You can create virtual overlay networks to connect devices using any form of public or private Internet access and segment them by customer, site or function. 

Because NetCloud Engine provides persistent, always-on connections—just like a LAN, they're ideal for supporting real-time applications like remote monitoring, data analysis and complex event processing (CEP). 

NetCloud Engine is designed to support the unique security requirements of M2M and connected device applications, including: strong end-to-end encryption, auto-PKI and machine authentication, a fully cloaked private address space, outbound-only connections, virtual network isolation and micro-segmentation.


  • Support for all modern devices: Windows, Mac, Linux, Android, and iOS
  • Persistent, always-on connections
  • Micro-segmentation with device-level SSL encryption
  • Machine-level authentication designed for embedded devices, kiosks, etc.


  • Massively scalable cloud platform with global footprint
  • Supports real-time applications like remote monitoring, analysis and CEP
  • Managed service with automatable deployments reduces operating costs
  • Self-healing cloud service ensures maximum uptime
  • Private IP address space and outbound connections eliminate the need for expensive public IP addresses and on-premise firewall changes
M2M and connected devices
Extend your AD domain everywhere

Extend your AD domain everywhere

Today, Active Directory (AD) is the foundation of enterprise security. It provides essential domain services such as authentication and single sign-on (SSO), password compliance, security and configuration policy (Group Policy), desktop software updates, and DNS. This all works great when everyone's in the office and on the AD domain, but what happens when remote users are off domain for extended periods of time?

NetCloud Engine with ADConnect allows IT admins to extend AD domain services seamlessly to remote users everywhere. Unlike traditional VPNs, NetCloud Engine emulates a persistent LAN connection that enables native AD authentication and keeps remote machines always on domains without end user interaction. Now you can reduce security risks and improve compliance by extending essential AD capabilities to everyone everywhere.

Key Features

  • Instant connection enables native AD logins, no cached passwords
  • Extends AD domain security and policy to remote users anywhere
  • Persistent, LAN-like experience requires no user interaction
  • Connect secondary and tertiary AD servers anywhere for redundancy


  • Improve security and compliance of remote and mobile workforce
  • Reduce support desk calls for password updates, etc.
  • Improve user experience with Kerberos SSO for remote users
  • Ensure availability of AD infrastructure

Hybrid and multi-cloud networking

There are a lot of public cloud options today. Whether your workloads are mainstream applications, disaster recovery, development or cloud bursting, there's a public cloud suited to your needs and workflow. The challenge becomes how to securely network them all together without losing automation and flexibility.

NetCloud Engine lets IT, development and devops teams build virtual private cloud (VPC) networks in minutes that connect cloud instances, containers and remote users across any private or public cloud. Our NetCloud Engine is software-defined and cloud-based, so there's no hardware or configuration and automation is a snap using machine authentication.

Each VPC is a secure, virtual overlay network with its own private address space, eliminating the need for public IP addresses or open inbound firewall ports.


  • Connect distributed VMs, containers and remote users on a single subnet
  • Isolate multiple cloud environments, easily migrate workloads
  • Virtual overlay network works with any private or public cloud
  • Superior security over traditional VPNs
  • Automatable using popular cloud orchestration and deployment tools


  • Cloud-based network — scalable, automatable and elastic
  • Single VPC solution for any workload on any cloud
  • Improve security and compliance in the cloud 
  • Eliminate VPN hardware, complexity and inelasticity
  • Future-proof: address emerging workloads such as cross-cloud migrations, cloud bursting and container platforms
Hybrid and multi-cloud networking
SD-WAN for cloud BC/DR

SD-WAN for cloud BC/DR

Many IT organizations have embraced public cloud storage or private Disaster Recovery as a Service (DRaaS) solutions as a cost effective way to ensure business continuity (BC) in the event of a disaster. While these services simplify the process of continual data backup and server replication, one challenge remains—static and inelastic network connectivity.

NetCloud Engine SD-WAN allows IT organization to deploy a virtual overlay network for BC/DR to connect remote and displaced workforce to backup servers and data from anywhere and any device. Since Cradlepoint networks are cloud-based and software-defined, you can seamlessly scale from a few to hundreds of connections—eliminating racks of idle hardware. With NetCloud Engine SmartZones, you can even deploy DR-based WAN parallel to your traditional WAN and control how traffic is routed between them.


  • Supports any server, VMs, containers on any private or public cloud
  • Secure DR access for Windows, Mac, Android and Apple devices
  • LAN over WAN connection for primary and backup server replication
  • Deploy in minutes or run parallel to your primary WAN
  • Scales instantly—without hardware—to support hundreds of connections
  • Integrated DNS service eliminates remapping of drives and FQDNs
  • Multi-layer security ensures compliance without additional overhead
  • Automatable using popular cloud orchestration and deployment tools


  • Provide business continuity in the event of a disaster displaces your workforce
  • Single solution that can support a breath of DR/BC requirements
  • Multi-cloud SDN platform routes around disasters to ensure high availability
  • Application-level network ensures DR workload mobility across private and public clouds
  • Save thousands by eliminating racks of standby network hardware
  • Accelerate DR fail-over by using SmartZones to run parallel WANs
Chat now Click to Chat