Data Sheet

Netskope One Private Access

Frictionless and Secure Access for

Key Benefits and Capabilities
Remote Workers
Zero Trust Network Access (ZTNA) is the modern remote access Zero Trust Network Access to Private Applications
solution built on the principle of Zero Trust. ZTNA provides ZTNA provides access to private applications,
not the network. With granular application-level
streamlined and secure access to private resources hosted in data
access control policies, trust is granted based
centers and public cloud environments. Authenticated users gain on user identity, group membership, and the
direct access only to authorized applications, not the underlying security posture of the devices.
network.
Superior User Experience with Direct &
Fast Connectivity
Why is Netskope the best choice? Bypass complex network routing and boost
user productivity with fast and frictionless
Netskope One Private Access seamlessly connects users anywhere to connectivity to applications. Leverage Netskope
private resources everywhere. As an integral component of the Netskope NewEdge network, a high-performance,
One Security Service Edge (SSE) solutions, it reduces business risks, highly available security private cloud that is
extensively peered with cloud service providers.
protects data, simplifies IT infrastructure, and enables secure remote
access with a superior user experience. Reduce Attack Surface
Enhance security posture and reduce overall
Top use case at a glance: attack surface by eliminating the exposure of
protocols and services to the public internet.
• Security Transformation: Zero Trust Network Access (ZTNA) that connects
Protect Data and Mitigate Insider Risk
authenticated users to authorized applications, not the underlying network.
Detect data usage, activities, and behavior
• Replace Remote Access VPN: Reduce the risks and exposure associated with anomalies (UEBA), enforce advanced DLP rules
remote access virtual private network (VPN). and policies, and apply adaptive access policy
based on user risks.
• Support Hybrid Cloud: Deliver a seamless end-user experience for accessing
Simplify Operations
applications in private data centers and public cloud environments.
Built on the Netskope One SSE platform that
• Third-party Access: Delivers secure remote access for your extended workforce unifies ZTNA, CASB, SWG, and Cloud Firewall
through both client-based and clientless (browser-based) options. with one client, one policy engine, and a single
management console, providing consistent
• M&A Integration: Provide day-one access to internal resources without the policy enforcement, ease of management,
complexity of combining networks. and visibility.

• DevOps Access: Native access to resources hosted in the virtual private cloud
(VPC) environments.
“By 2025, at least 70% of new
Private Applications

remote access deployments will

Remote Workers

Data Center
be served predominantly by zero
Netskope One Private Access
trust network access (ZTNA) as
Public Cloud
opposed to VPN services.”
Netskope Client Netskope Publisher

– Gartner®, Emerging Technologies: Adoption

Growth Insights for Zero Trust Network Access, Nat
Smith, Mark Wah, Christian Canales, 8 April 2022

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or

its affiliates in the U.S. and internationally and is used herein with permission.
All rights reserved.

Ready for anything

 YOUR NEEDS THE NETSKOPE SOLUTION

Broad Application Support for client-initiated access to enterprise applications built on TCP and UDP protocols, thus enabling
Support access to web applications and non-web / thick clients (e.g., SSH, RDP, Microsoft Windows Active Directory).

Support for client-based or client-less (browser access) options for private web applications (e.g. HTTP or
Third-Party and
HTTPS applications) for third-party access or employee BYOD, with optional inspection with DLP rules
BYOD Access
for data protection.

Granular Policy for

Leverage user and device identity along with unified risk information to enable access to private applications.
Access Control

Accelerate ZTNA adoption by streamlining the process of application discovery, policy definition, and access
authorization. Network administrators gain detailed insights into the private application landscape, utilization,
Application Discovery
users, and traffic patterns. Combined with the API automation tools, enterprises now can scale the delivery of
application access with adaptive controls and policies.

Private Infrastructure The Publisher Dashboard provides insight into application traffic, publisher health, and utilization, enabling
Management decision on resource allocation, connection optimization, and troubleshooting.

Analytics and Advanced Analytics provides real-time visibility into detailed application traffic and user activities, as well as
Reporting alerting on policy violations.

Administrators can automate the entire process of application discovery and management using APIs. APIs are
API Automation
also available for Publisher management. The APIs offered are full featured and have parity to the Netskope UI.

All DLP security controls within Netskope One DLP can be utilized for private application access. This means
Data Protection that data is classified only once, and the same DLP profiles and incident response can be used for SaaS, Public,
and private applications.

Secure Connectivity Quickly onboard new employees and enable self-service provisioning on a new PC. Administrators can leverage
at Pre-logon enterprise device certificates to ensure only sanctioned devices have access to internal applications.

The user-to-application traffic is optimally routed through the Netskope NewEdge security private cloud, with
Direct and Fast
its global coverage, premium transit selection, and extensive peering to cloud providers, to deliver a superior
Connection
user experience and fast application performance.

Enable administrators to schedule software updates thus ensuring Private Access Publishers and host OS are
Auto Update
always on the latest software version.

One client, one policy engine, and single Admin UI for app configuration, policy, analytics, and reporting across
Unified Platform
all Netskope services.

DEPLOYMENT COMPONENTS

Netskope One Private Access is enabled in the unified lightweight Netskope One Client, which supports
Netskope One Client Microsoft Windows, Apple Mac OS and iOS, Chrome OS (Chromebook), and Android. Private Access also
supports clientless access through “browser access” on devices with a supported browser.

The Publisher is an application gateway that initiates outbound connection to the Netskope One platform,
Private Access
eliminating the risk of inbound network access. Publishers can be deployed on servers running Ubuntu, in virtualized
Publisher
environments using VMware and Hyper-V, and in public cloud environments such as AWS, Azure, and GCP.

Netskope, a global SASE leader, uses zero trust principles and AI/ML innovations to protect data and defend against cyber threats, optimizing both security
and performance without compromise. Thousands of customers trust the Netskope One platform and its powerful NewEdge network to reduce risk and gain
unrivaled visibility into any cloud, web, and private application activity. Learn more at netskope.com.

©2024 Netskope, Inc. All rights reserved. Netskope, NewEdge, SkopeAI, and the stylized “N” logo are registered trademarks of Netskope, Inc. Netskope Active, Netskope Cloud XD,
Netskope Discovery, Cloud Confidence Index, and SkopeSights are trademarks of Netskope, Inc. All other trademarks included are trademarks of their respective owners. 12/24 DS-376-6