Enterprise Link
Enterprise-grade control over data and delivery
Protect every artifact with automated policy controls that scale with your business. Cloudsmith makes it easy to enforce security, compliance, and governance across every stage of your software supply chain.
Add an additional layer of security and governance to Cloudsmith with Enterprise Link
Cloudsmith is already secure by default, but with Enterprise Link our customers get additional layers of security to protect their most valuable IP; including end to end data encryption, org-wide data residency controls, fixed IP ranges to enable firewall rules, IP and geographic blacklisting, and ephemeral tokens for authentication.
By activating Enterprise Link, enterprise customers get the benefits of a globally-distributed SaaS solution, with even stronger protection against threat actors.
By activating Enterprise Link, enterprise customers get the benefits of a globally-distributed SaaS solution, with even stronger protection against threat actors.
Access Control & Security
GEO/IP Restrictions at Workspace Level– Apply GEO/IP restrictions to the entire workspace, covering both UI and download endpoints, not just downloads.
Global Workspace Defaults for IP Allow Lists – Set a default IP allow list at the workspace level that applies to all repositories.
Static IP Address Access – Provide access to Cloudsmith from a fixed, small range of static IPs for easier firewall and security management, while reducing data output and NAT costs
OIDC Authentication for Service Accounts – Support OpenID Connect for service accounts, enabling secure token-based authentication and integration with identity providers.
Global Workspace Defaults for IP Allow Lists – Set a default IP allow list at the workspace level that applies to all repositories.
Static IP Address Access – Provide access to Cloudsmith from a fixed, small range of static IPs for easier firewall and security management, while reducing data output and NAT costs
OIDC Authentication for Service Accounts – Support OpenID Connect for service accounts, enabling secure token-based authentication and integration with identity providers.
Data Residency & Storage Configuration
Workspace-Level Repository Storage Regions – Define storage regions at the workspace level instead of per repository for consistency and compliance.
Default Fixed Region for All Data – Configure a single fixed default region for all workspace storage and data to maintain consistent residency.
Default Fixed Region for All Data – Configure a single fixed default region for all workspace storage and data to maintain consistent residency.
Endpoint & Data Protection
Simplified Custom Domains for All Endpoints – Self-serve (or semi-self-serve) configuration of custom domains for all package endpoints, supporting all formats e.g. packages.your-company.com.
Full End-to-End Encryption – Ensure packages are encrypted both in transit and at rest for maximum security and compliance.
Full End-to-End Encryption – Ensure packages are encrypted both in transit and at rest for maximum security and compliance.
Frequently Asked Questions
Ready to get started?
Speak with a Cloudsmith expert about your security and compliance requirements. We're here to help.