The Secure Agent is listed as enabling software with ACE SaaS so does not require any additional ACE license - please see:https://www.ibm.com/support/customer/csol/terms/?id=i126-9531&lc=en
This provides support for secure connection to endpoints and systems on a private network without requiring customer to open any inbound ports in their firewall.
There are several use-cases supported by the switch server, the two main ones are:
- Port-forwarding: Use the Secure Agent to integrate with endpoints and systems on a private network
- Callable flows: Invoke another ACE flow over the switch server
The first "port-forwarding" use case is supported by the Secure Agent without requiring any additional license. The callable flows use case may require additional ACE license if they are running one of the ACE flows outside of the managed service (i.e. in the private network).
It sounds like it is the "port-forwarding" use-case you are asking about that leverages the Secure Agent - if this is the case then it is included as "Enabling Software" with ACE SaaS and does not require any additional ACE license.
You can find more information on these use cases in the documentation - for example:
Please reach out if you have any further questions.
------------------------------
Martin Ross
IBM
------------------------------
Original Message:
Sent: Tue March 12, 2024 01:32 AM
From: Hemanth Chinnadandluru
Subject: Do we need Switch server license to establish secure tunnel from AWS SaaS to On premise network
Hi Team,
we have a requirement, where we need to connect to on premise network from ACE AWS SaaS instance. customer is not willing to expose their on premise applications to Public
Customer bought AWS SaaS instance of 4 VPC hour. Do we need to buy additional license ACE license to use switch server in on premise network to establish secure connection.
------------------------------
Hemanth Chinnadandluru
IBM Integration Engineer
------------------------------