Cloud Secure Edge Getting Started Guide
Table of Contents
Choosing Your License
The Secure Private Access license provides safe access to resources on the internal networks. It provides two core capabilities:
- Tunnel-based ZTNA (Cloud VPN or VPNaaS): Secure network access to specific network segments.
- Proxy-based ZTNA: Secure access to private resources such as internal HTTP applications and TCP services.
Secure Internet Access license provides three core capabilities:
- DNS-Layer Security (DNS): Domain-level threat protection blocking malicious domains and enforcing acceptable use policies.
- Cloud Access Security Broker (CASB): Enforcement device trust policies to access SaaS applications.
- Secure Web Gateway (SWG): Web content filtering to block malware and other threats hidden in encrypted web traffic.
The following licensing is recommended based on what you are trying to accomplish with Cloud Secure Edge:
| Function | License Requirement |
|---|---|
| To set up remote access: | Secure Private Access |
| To block malicious content: | Secure Internet Access |
| To protect SaaS applications: | Secure Internet Access Advanced |
| To set up ZTNA: | Secure Private Access Advanced |
| To check device security posture: | Secure Private Access |
For a deeper understanding of licensing, you can refer to Cloud Edge Licenses.