Sophos ZTNA Tech Specs

Download Datasheet

Technical Specifications

Supported Platforms
Identity ProvidersMicrosoft Active Directory (on-premise), Microsoft Entra ID (Azure Active Directory), Okta
ZTNA Gateway PlatformsVMware ESXi 6.5+, Hyper-V 2016+, and Sophos Firewall v20+ (all hardware, virtual, and cloud platforms including AWS and Azure)
ZTNA Client PlatformsWindows 10 1803 or later, macOS 12 (Monterrey) or later; All platforms support agentless web application access
ZTNA Device Health Sophos Security Heartbeat (Intercept X)

 

Gateway Specifications
Recommended VM2 Core / 4GB
Multi-Node ClusteringVMs can be clustered with up to 9 nodes and Sophos Firewall can be deployed in HA for added gateway performance, capacity, and business continuity
Node Capacity and Scaling10,000 agent connections for a single node, up to 90,000 agent connections in a cluster (max. 9 nodes)

 

Deployment Options
ZTNA-as-a-ServiceUtilizes cloud gateways to manage and broker connections between devices and lightweight gateways deployed on-prem that connect automatically to the Sophos Cloud via regional Sophos cloud points of presence. This solution offers the ultimate streamlined deployment without requiring any firewall configuration and makes the applications more invisible and secure as a result.
ZTNA on-premise GatewaysProvides a private data plane connection directly between your endpoints and applications. This solution will be best for those customers who have concerns about latency via the cloud points of presence.
Hybrid DeploymentYour Sophos ZTNA deployments can use a hybrid mix of the above options if desired.