Sophos ZTNA Tech Specs

Download Datasheet

Technical Specifications

Supported Platforms

Identity Providers

Microsoft Azure and Okta

ZTNA Gateway Platforms

VMware ESXi 6.5+, Hyper-V 2016+, and AWS; Coming Soon: Sophos Firewall v20 (all hardware, virtual, and cloud platforms)

ZTNA Client Platforms

Windows 10 1803 or later, macOS 11 (Big Sur) or later; All platforms support agentless web application access

ZTNA Device Health 

Sophos Security Heartbeat (Intercept X)


Gateway Specifications
Recommended VM 2 Core / 4GB
Multi-Node Clustering Up to 9 nodes with load balancing for performance, capacity, and business continuity
Node Capacity and Scaling

10,000 agent connections for a single node, up to 90,000 agent connections in a cluster (max. 9 nodes)


Deployment Options
ZTNA-as-a-Service Utilizes cloud gateways to manage and broker connections between devices and lightweight gateways deployed on-prem that connect automatically to the Sophos Cloud via regional Sophos cloud points of presence. This solution offers the ultimate streamlined deployment without requiring any firewall configuration and makes the applications more invisible and secure as a result.
ZTNA on-premise Gateways Provides a private data plane connection directly between your endpoints and applications. This solution will be best for those customers who have concerns about latency via the cloud points of presence.
Hybrid Deployment

Your Sophos ZTNA deployments can use a hybrid mix of the above options if desired.