Overview
Netskope Private Access (NPA) provides zero trust network access (ZTNA) to private applications and data in hybrid IT (public cloud and data center) environments. An integral capability of Netskope Intelligent SSE, NPA offers seamless connectivity for authenticated users, supports any application and protocol, reduces business risk, and simplifies IT infrastructure. This listing is for the NPA Publisher AMI that enables NPA to discover resources that remote users require secure access to including AES Marketplaces.
Notes: Download the NPA Publisher AMI only if you have an NPA license.
To test drive NPA, please visit: https://www.netskope.com/lp-npa-trial?utm_source=AWS
Download the NPA Publisher Terraform module here: https://registry.terraform.io/modules/netskopeoss/publisher-aws/netskope/latest
To learn more about NPA automation and the terraform module please read the blog: https://community.netskope.com/t5/Blogs/Managing-Netskope-Publishers-in-AWS-using-Terraform/ba-p/1415
Highlights
- Seamless and direct access to AWS: Connect remote users directly to applications in public cloud environments - no need to hairpin through corporate infrastructure.
- Zero trust network access to private applications: Protect data and resources with application-level access control based on user identity and device security posture.
- Streamlined cloud operations through automation: A modern alternative to legacy VPNs, NPA delivers direct connectivity that is secure, flexible, and highly scalable. NPA supports automation tools such as Terraform modules for automating the deployment, configuration, and scaling of NPA Publishers running in EC2.
Details
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Trust Center
Financing for AWS Marketplace purchases
Pricing
Vendor refund policy
no refunds
How can we make this page better?
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
NPA Publisher 138.0.0.10853
Additional details
Usage instructions
Resources
Support
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products

Customer reviews
Advanced AI Monitoring and Strong Integrations with Solid Performance
7:46 PM
UI/UX
Initial setup is complex and requires expertise. UI is being rebuilt but not there yet. Once live, workable but not intuitive.
Integrations
Strong native API integration with leading vendors. 30+ partner connectors. Some integration clarity gaps with CrowdStrike and others—unclear what data flows where.
Performance
Solid latency and connectivity, stable endpoint agent. Won't slow down your network or users.
Pricing / ROI
Significantly higher than Zscaler. Only makes sense if replacing 3+ tools. Consolidation saves money operationally, not upfront.
Support / Onboarding
Professional services handles activation; support P1 response under 2 hours. Onboarding is demanding but well-managed once engaged.
AI / Intelligence
Advanced UEBA with ML models for automated C2 beacon detection. Continuous behavior monitoring for anomaly detection and AI tool misuse. Strong generative AI monitoring. Real differentiator—competitors lag here.
UI/UX Mess
The interface feels clunky and dated. Setup requires serious expertise—not built for mid-market IT teams. You'll spend weeks getting it right. Multiple portals to manage different functions kills efficiency. Even after deployment, policy configuration is tedious.
Pricing is Aggressive
Cost is substantially higher than competitors like Zscaler for similar functionality. You're paying a premium without clear justification unless you're consolidating many tools. Budget conversations get difficult.
Integration Ambiguity
While integrations exist, they're unclear. CrowdStrike integration? Nobody really knows what telemetry actually flows. Data enrichment between tools is murky. You end up guessing whether it's working.
Onboarding Friction
Initial configuration is brutal. Requires dedicated resources and Netskope's professional services. Takes months to get to production-ready, not weeks. Your team will burn cycles on setup instead of security.
Support Inconsistency
Premium tiers are expensive. Basic support (5 business days) is too slow for real incidents. TAC (Technical Account Coordinator) quality varies—sometimes great, sometimes you loop in your account manager just to get traction.
Limited for Smaller Orgs
This is enterprise-grade. If you're under 500 users, the overhead and cost don't justify the benefits. Overkill and expensive for your use case.
AI Features Still Maturing
UEBA is good but not exceptional. Generative AI monitoring is new—real-world effectiveness still unproven. You're partly beta testing their latest features.
Shadow SaaS & Unauthorized AI Apps
Organizations have zero visibility into what cloud apps employees use. Netskope shows you everything—including personal ChatGPT, unauthorized Gemini, shadow Salesforce instances. You can't protect what you can't see. Benefit: Real control over data leakage into unsanctioned tools.
Data Loss Prevention at Scale
Legacy DLP tools are slow and create false positives. Netskope's DLP is granular—you can block data uploads to personal cloud storage while allowing work tools. It captures exactly what was pasted into ChatGPT or Gmail. Benefit: Compliance without crippling user workflows.
VPN Replacement (ZTNA)
VPNs are slow, hard to manage, and insecure. Netskope replaces VPN with Zero Trust Network Access. Employees get faster remote access, IT gets better control. Benefit: Speed + security without the VPN overhead.
Single Console Instead of Tool Sprawl
Most enterprises run 5-6 separate security tools (CASB, SWG, ZTNA, FWaaS, DLP, threat protection). Netskope consolidates into one platform with one policy engine. Benefit: Fewer tools to manage, faster incident response, simpler policies.
Visibility into AI Risk
Generative AI adoption is exploding but uncontrolled. Netskope tracks which AI apps are being used, what data flows into them, and flags risky behavior. Benefit: You actually know your AI risk instead of guessing.
Threat Detection on Cloud/Web Traffic
Most organizations are blind to threats in cloud and web traffic. Netskope detects malware, C2 beacons, and anomalies in real-time. Benefit: Catches threats before they become breaches.