A cloud-delivered security service edge (SSE) solution, grounded in zero trust, designed to give users an exceptional user experience and protected access from any device to anywhere.
N/A
Zscaler Private Access
Score 8.9 out of 10
N/A
Zscaler Private Access™ (ZPA) gives users secure access to private apps and OT devices while enabling zero trust connectivity for workloads.
Cisco Secure Access has allowed us to monitor and adjust access to web-based resources. We have been able to manage and provide granular rules to allow access to required resources. We are now transitioning to a more zero-trust approach, and so far, the product has demonstrated its capabilities, allowing us to move forward with this approach.
Zscaler Private Access works really well in environments setup for FQDNs and where you know what users should/shouldn't be accessing on what ports. You can use Zscaler Private Access to figure out these kinds of features but that doesn't always mean you'll be correct. It also provides a consistent experience for users as they can access their materials anywhere. It also makes the user the last line of defense. If a user's account is compromised then the attacker has access to everything they already did. It doesn't work great in OT environments or Server based environments. Flows have to be initiated from the client and not the server for stuff to behave properly.
It offers various security capabilities, including ZTNA, FWaaS, VPNaaS, DNS Security, Data loss prevention, advanced malware protection, etc., all in a single comprehensive solution.
It enables your employees to access SaaS applications and internet securely
By isolating sensitive applications and data into smaller segments, it reduces potential damage from a security breach.
The integration into the Meraki dashboard is not yet complete, you have to use several interfaces to complete the configuration, the services should be fully integrated to provide better handling
Integration of firewall rules onprem and cloud should be standardized
Application Segmentation and Listener Configuration - The way applications are defined and listened for is fundamental to ZPA, but can be a source of frustration, especially when dealing with legacy or non-HTTP protocols
The ZCC is the user's primary gateway, but its control over local system network behavior can sometimes clash with enterprise requirements.
The environment feels more secure, and we are seeing that users are adapting to it fast. The fact that we have tools to assist the users with their day-to-day access helps, as we can hand it off to the helpdesk without any escalations to the Network team. It is a work in progress for our agency, but we are seeing the benefits from the solution.
We selected Cisco Secure Access due to the intuitive GUI and ease of use. The agent deployment was simple and easy to maintain. Any additional updates or changes were quickly deployed, and users found the customized block messages useful. From analytics and management, the Secure Access Product has been simple to manage and provides a robust level of security and flexibility that we haven't found in any other product yet.
Well ZPA is a good solution, however everyone has their own advantage and disadvantages, with ZPA you can deploy ZTNA model, which will help you better control on access, however Palo Alto, Fortinet they are also market leading firewall solution, and you can not deny if they are not providing the same features.
Positive: We have now charged users internally for the service
Negative: Dealing with users who also have the Zscaler Client Connector for their company, can cause confusions
Negative: Enabling the Zscaler Internet Access entitlement has been a major headache for us because Zscaler Private Access users can't autheniticate through ZIA on a non corporate device.
