Ĭonfigure additional settings your organization requires to provide access to applications bridged by Zscaler:įor Android, we need to create an app configuration policy and assign it to the Zscaler App we added earlier.Ĭreate an app configuration policy by navigating to “Client apps -> App configuration policies” Note: the “Organization’s cloud name” is case sensitive and FQDN and key/value pairs are optional, for more details please visit. When performing a search for “Zscaler” under apps in Intune you should see both assigned apps.Ĭonfiguring the Zscaler App using a VPN policy for iOS and app config for AndroidĬonfiguring Zscaler Private Access for iOS in Intune is straightforward as Intune has the settings available directly in the Intune adming portal UI as shown below.
#Zscaler internet access beyondcorp how to#
Note: if you haven’t set up Managed Google Play with Intune yet, you will find details steps on how to do so by visiting: Use Managed Google Play in the console to search for Zscaler, then add and assign the app to a group for deployment. Add the app and assign it to a group for deployment.įor Android, repeat the steps above, however for the “App type” select “ Android“. Search for Zscaler and select “Zscaler App” as shown below. Select “Add” then App Type and from the dropdown select iOS. Navigate to or and select “Client apps -> Apps”
#Zscaler internet access beyondcorp windows 10#
However, Zscaler is also supported on macOS and Windows 10 ( more details at the bottom of this post).Īfter SSO is set up with Zscaler and Azure AD, we now need to add the Zscaler App to Intune for deployment. Additional Zscaler documentation located here: Īdding Zscaler App to Intune for deploymentįor this post I focus on iOS and Android.In addition, Zscaler has also created their own documentation that may be referenced as well: Setting up Zscaler Private Access (ZPA) requires a few steps so I won’t go through them, however the steps are well documented here: Once the user accesses the the Zscaler App on their device, they’ll be passed through to Azure AD for sign-on. Christopher Hines – Head of Product Marketing – ZPA and Zscaler Appįirst, we need to set up Zscaler with Azure so we can provide SSO as users access the app.David Creedy – Senior Product Manager – Web Security.Tyler Castaldo – Microsoft Program Manager – Intune.More details about Zscaler may be found by visiting: : īefore we get started, I want to give special thanks to the following individuals I collaborated with for this post: Allowing enterprises to embrace a software-defined perimeter that supports all private apps and environments.” “The Zscaler Private Access (ZPA) service provides users with seamless and secure access to private applications without placing them on the network and without exposing apps to the internet. To keep up to date with Microsoft security partners please visit: įor this month’s post I’ll focus on Intune, Azure Active Directory, as well as a Microsoft security partner, Zscaler, particularly Zscaler Private Access and its integration with Azure AD and Intune.Īccording to Christopher Hines, Head of Product Marketing at Zscaler: The following list is just an example of the many technology partnerships Microsoft has in place today. Over the past few years, Microsoft has worked with many security and management vendors to integrate with Microsoft Intune and other solutions in EMS such as Azure Active Directory. As I’ve written about in the past, security comes in layers, and zero trust encompasses many layers of security behind the scenes. This is why organizations are using Microsoft technologies to build out zero trust networks where they rely on device and user claims to evaluate access to resource both on and off network. The days of relying on the walls of a network to “trust” access are fading fast, and some would say they’re long gone. Securing the perimeter has become increasingly difficult with more and more services moving to the cloud and users needing, no, expecting, access from their personal devices.
0 kommentar(er)
