As enterprises rely on SaaS or Cloud-based delivery models for business-critical
applications, there’s a compelling need for per-application policy enforcement without
increasing remote office infrastructure. Traditional hardware-router based approaches
are limited by heavy-handed ‘all or nothing’ policies for direct-to-internet versus
policy enforcement per-application. Additionally, because router-based approaches are
packet-based versus application-session based, they fail to meet application
session-symmetry requirements, causing network and security outages.
The integration of Prisma SD-WAN SD-WAN and Zscaler Internet
Access (ZIA), allows customers to have a lightweight remote office hardware footprint,
while still being able to provide a full suite of application-specific security
policies.
To facilitate this integration, Prisma SD-WAN Release 5.1.1
and later provide CloudBlades to automatically integrate the Prisma SD-WAN Controller, Remote Prisma SD-WAN ION devices and Zscaler Enforcement
Nodes (ZENs).
Prerequisites
The following items are required for configuring Prisma SD-WAN and Zscaler Internet Access integration:
Prisma SD-WAN
An active Prisma SD-WAN subscription.
Prisma SD-WAN AppFabric deployed at one or more locations.
Physical and/or virtual ION devices running Release 5.1.9 or later.
Zscaler
An active Zscaler Internet Access Instance (in any cloud).
Administrator login credentials for this instance.