A cloud-delivered security service edge (SSE) solution, grounded in zero trust, designed to give users an exceptional user experience and protected access from any device to anywhere.
N/A
Zscaler Private Access
Score 7.9 out of 10
N/A
Zscaler Private Access™ (ZPA) gives users secure access to private apps and OT devices while enabling zero trust connectivity for workloads.
I think it's a good product for companies that has a lot of branches, not for small companies. I would say medium to large companies that need to have a good visibility. What do they have in the network and somehow interconnected with the security department that will also review the logs from ISE and make conclusions about what do they have in the network.
The tool is, for the most part, very intuitive. Most of our issues so far (working through them with our Resident Engineer) are the one-off applications. We are working on some exemptions to make them functional. Besides that, the team loves the tool and how it can provide better security than our previous tool.
It offers various security capabilities, including ZTNA, FWaaS, VPNaaS, DNS Security, Data loss prevention, advanced malware protection, etc., all in a single comprehensive solution.
It enables your employees to access SaaS applications and internet securely
By isolating sensitive applications and data into smaller segments, it reduces potential damage from a security breach.
The integration into the Meraki dashboard is not yet complete, you have to use several interfaces to complete the configuration, the services should be fully integrated to provide better handling
Integration of firewall rules onprem and cloud should be standardized
Application Segmentation and Listener Configuration - The way applications are defined and listened for is fundamental to ZPA, but can be a source of frustration, especially when dealing with legacy or non-HTTP protocols
The ZCC is the user's primary gateway, but its control over local system network behavior can sometimes clash with enterprise requirements.
Few things stand out. The ease of access: It very convenient - one click to open add details and done. Packet capture: Can't talk enough about this feature. Troubleshooting private access is always problematic,but this feature helped a lot. One thing that can be improved is early warning about expiring authentication
We selected Cisco Secure Access due to the intuitive GUI and ease of use. The agent deployment was simple and easy to maintain. Any additional updates or changes were quickly deployed, and users found the customized block messages useful. From analytics and management, the Secure Access Product has been simple to manage and provides a robust level of security and flexibility that we haven't found in any other product yet.
All of these tools are for different needs. Zscaler Private Access being for internal seems very simple as it really only allows filtering up to L4 whereas ZIA allows for filtering up to L7. ZDX often tries to give insight into the environment but since it only works with preconfigured items, that then means when a new problem shows up - ZDX isn't helpful troubleshooting postmortem. For the internal side of the house - Zscaler Private Access' strength is its simplicity to configure.
Positive: We have now charged users internally for the service
Negative: Dealing with users who also have the Zscaler Client Connector for their company, can cause confusions
Negative: Enabling the Zscaler Internet Access entitlement has been a major headache for us because Zscaler Private Access users can't autheniticate through ZIA on a non corporate device.
