Network Discovery & Trust
Map the network and control device trust boundaries.
Breeze combines active discovery with zero-trust-ready device identity controls. Teams can scan subnets from in-network agents, classify discovered assets, and apply certificate-based authentication where needed.
Discovery Engine
Discovery profiles define scan scope and behavior, including target subnets, methods, schedules, and optional SNMP settings. Scans can use ARP, ICMP, TCP port checks, and SNMP metadata to identify hosts and services.
Discovered assets are tracked per organization with lifecycle states for review, linking to managed devices, and exception handling.
Optional Cloudflare mTLS
Breeze can integrate with Cloudflare API Shield to issue client certificates to agents at enrollment. Certificate renewal and quarantine handling are supported, but this layer is optional; deployments can run with bearer-token auth only when mTLS is not configured.
Multi-Tenant Safety
Discovery data and device operations follow Breeze’s organization scoping model, helping MSPs manage multiple customer environments without cross-tenant leakage.
Capabilities
Profile-Based Discovery
Discovery profiles define subnets, methods, schedules, and scan options per site scope.
Multi-Method Scanning
ARP, ICMP, port probes, and SNMP metadata can be combined for richer asset discovery.
Optional Cloudflare mTLS
Cloudflare mTLS can be enabled for certificate-based agent trust without being mandatory for operation.
Tenant-Scoped Asset Data
Discovered assets and related operations are isolated by organization context.