Avanpost Device Control

2025

Integration with Yandex.Browser

Yandex B2B Tech and Avanpost are launching a secure access solution in the age of BYOD and hybrid operation. Avanpost announced this on October 24, 2025.

The integration of Avanpost Device Control (as part of the Avanpost Access platform) with Yandex.Browser for organizations is presented. This solution integrates the technologies of the two platforms and significantly changes the approach to managing trust in devices, providing unified, secure and transparent access to corporate resources - regardless of which device, and where the employee works.

Modern IT and information security teams face three system calls:

• Disparate fleet of devices: tens of thousands of connection points, including BYOD, without a single accounting system.
• Lack of transparency: administrators do not see whether the antivirus is updated, whether the OS is up to date, or whether the necessary patches are installed.
• Inaccurate identification: the same device can "look" like several different ones when connected through a browser, mobile application or desktop agent.

The integration of Avanpost and Yandex B2B Tech solutions eliminates all three problems and gives the business the following advantages:

• · Unified digital profile of the device - for any type of client: web, mobile, desktop.
• Fully transparent device health - Administrators see protection status and other key settings.
• High-precision trust assessment - eliminates false positives and "multiplication" of devices, which increases the effectiveness of the implementation of the Zero Trust policy.
• Responsiveness - Administrators can configure policies from complete blocking to simplified access with additional verification.
• Load reduction IT - instead of many disparate tools - a single platform for managing trust in all devices in a hybrid and BYOD environment.
• Thanks to the group policies built into Yandex Browser for organizations, confidential information remains inside a secure loop, which is preserved regardless of whether the information security service has control over the rest of the device's environment or not.
• The browser has advanced functions of protection against data leakage through copying to the clipboard, printing, downloading or forwarding files by mail, in instant messengers, to other sites or media
• The Device Check function, as well as the application integrity check, make sure that the device from which the employee connects to the corporate infrastructure meets the requirements of the information security service

Access security is not only about the user, but also about the device. We are pleased to introduce a solution that allows you to accurately identify each device, regardless of the context of its use. This is the foundation for building a truly reliable Zero Trust architecture in a hybrid environment, "said Dmitry Grudinin, head of the Avanpost Access product line, Avanpost.

{{quote "The issue of security of corporate systems has been especially acute in recent years - security loops are blurred due to the migration of work scenarios to the web, trends to remote work, connection from personal devices. Integration with Avanpost Device Control is a strategic solution that allows our customers to accurately control the level of trust in each device and create a reliable barrier to potential threats, ensuring resource protection at the entry point level, "said Ilya Shibanov, CEO of Yandex Browser. }}

Starting Avanpost Device Control

Avanpost on July 29, 2025 announced the launch of the Avanpost Device Control product, a key element of the Zero Trust concept. The solution is designed to provide employees with secure access to corporate data and applications from any device - corporate or personal (BYOD) - without compromising on security and convenience.

Over the past five years IT infrastructures , companies have changed dramatically: the share of personal devices has exceeded the share of corporate devices, the life cycle of devices has accelerated, SaaSPaaS and/-services have become the standard. In the era of hybrid operation, companies began to face increasing risks due to uncontrolled access to resources from heterogeneous devices. Traditional MDM systems are difficult to manage, and cumbersome and platform-dependent device registration procedures and complex for users authentication reduce productivity. Data breaches through compromised devices become a critical threat.

Avanpost Device Control provides increased security by eliminating access from untrusted devices and minimizing the risk of data breaches by accurately identifying and enforcing thoughtful security policies. The solution helps increase employee productivity, simplifying the authentication process - systems are accessed in one click from trusted devices. The system is flexible and scalable, supports an unlimited number of devices, including those running domestic operating systems such as Astra Linux, Red OS and Alt Linux, and also allows you to use the BYOD approach. In addition, Avanpost Device Control helps significantly reduce costs by eliminating complex MDM systems and saving time on password and incident management.

The solution is built on a single technology platform with integration into Avanpost FAM/MFA +/USSO, which makes it easy to implement device control functionality without complex work. It supports the installation of lightweight authenticator applications on all major platforms. Identification and automatic registration of devices is transparent and invisible to the user without unnecessary steps, which makes the implementation simple and flexible. Built-in analytics and reporting allows you to monitor endpoint security and collect usage statistics.

Device Control is changing the security paradigm: now any employee device becomes an additional level of enterprise perimeter protection, which, coupled with the capabilities of an IAM solution in terms of user-device-resource communication tracking, gives value and a whole arsenal of tools. The system collects information about the network environment from which the employee works and assigns the user to a specific device. By combining data from all corporate applications into a single employee device profile, it improves the accuracy of authentication mechanisms: reducing the burden on a legitimate employee and at the same time increasing the complexity of access for a potential offender. At the same time, Device Control automatically keeps a centralized record of all devices used. We combined simplicity for the user and control for IT, abandoning outdated MDM approaches, "said Dmitry Grudinin, head of development of the Avanpost FAM/MFA + authentication product line.