Today, 40 percent of enterprises are running apps in Azure to increase scalability and speed. This move has extended the perimeter to the internet. Yet, many enterprises still rely on remote access VPNs, which are network-centric, and not built to secure access to the internet. They also place users on the network, and require physical or virtual appliances that increase complexity and limit scalability.
Zscaler Private Access (ZPA) for Azure is a cloud service from Zscaler that provides zero-trust, secure remote access to internal applications running on Azure. With ZPA, applications are never exposed to the internet, making them completely invisible to unauthorized users. The service enables the applications to connect to users via inside-out connectivity versus extending the network to them. Users are never placed on the network. It provides a software-defined perimeter for Azure, that supports any device and any internal application.Read the Solution Brief
Transform with Zscaler.
Users have fast, direct-to-cloud access without having to login to remote access VPN client each time.
Network admins can segment based on application from within the web UI. No need to segment by network. No IP address segmentation or access control lists required.
Policy-based access, with no access to network. Visibility into apps being accessed by users and ability to discover unsanctioned apps running within Azure.
Service uses dynamic, application-specific TLS-based end-to-end encryption. All data remains private and enterprises can bring their own PKI.
The cloud service requires no hardware. Enterprises can easily scale across multiple Azure and Zscaler data centers with no need to replicate gateways.
The service uses the global Azure network to ramp up new users and route them to the app location nearest to them via internet-based networking.
Zscaler Private Access for Azure, a ZPA Public Service Edge, which brokers access between a remote user and an internal application, runs within the Azure cloud. This enables networking admins to leverage the Azure network and its many data center locations to reduce latency by minimizing hops, which boosts user productivity.
We have developed integrations for Azure ecosystems, including integration with Azure AD, which enables admins to use ZPA to set access policies for user groups based on their existing configurations. Additionally, App Connector is available on the Azure Marketplace. App Connector front-ends apps on Azure and sends an inside-out connection to the Zscaler security cloud, where the brokered connection between an authorized user and application takes place.