Sold by: AppGate Federal
Deployed on AWS
AppGate ZTNA, an industry-leading Zero Trust Network Access (ZTNA) solution, puts your people first with simple, fast, secure connections to multi-cloud, on-prem, or legacy applications - from anywhere. AppGate ZTNA is a cloud-native, unified, API-enabled solution which delivers valuable security, efficiency and user experience benefits. Each user has a one-to-one encrypted network segment to each location where resources have been explicitly granted. Developers enjoy concurrent and automated access to multiple, disparate environments without waiting for manual access approvals. Admins can easily ensure that users have access to necessary resources, regardless of physical location or virtual segmentation.
4.8
Overview
AppGate ZTNA, an industry-leading Zero Trust Network Access (ZTNA) solution, puts your people first with simple, fast, secure connections to multi-cloud, on-prem, or legacy applications - from anywhere. AppGate ZTNA is a cloud-native, unified, API-enabled solution which delivers valuable security, efficiency and user experience benefits. Each user has a one-to-one encrypted network segment to each location where resources have been explicitly granted. Developers enjoy concurrent and automated access to multiple, disparate environments without waiting for manual access approvals. Admins can easily ensure that users have access to necessary resources, regardless of physical location or virtual segmentation.
This paid version includes a 25-user license and should be deployed as a single standalone ZTNA appliance. Hourly and Annual subscriptions of this product are available in the AWS Marketplace. Annual subscriptions provide a 9 percent savings compared to running the same product hourly for extended periods. Any customer usage above the number of annual subscriptions purchased is billed at the hourly rate. Contact support@appgate.com with any questions.
Highlights
- Enable all users: Consistent secure multi-tunnel access for anyone working from anywhere, whether in the office or remote
- Secure all devices: Reliable, easy secure access from managed or unmanaged devices of all makes and models
- Protect all workloads: Unified, multi-tunnel secure access for multi-cloud, on-premises and even your tried-and-true core legacy apps
Details
Sold by
Delivery method
Delivery option
Standalone Appgate SDP Deployment
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
Ubuntu 20.04
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time. Alternatively, you can pay upfront for a contract, which typically covers your anticipated usage for the contract duration. Any usage beyond contract will incur additional usage-based costs.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Cost/hour |
|---|---|
c5.2xlarge Recommended | $0.50 |
r6i.4xlarge | $0.50 |
m4.2xlarge | $0.50 |
r4.large | $0.50 |
m5.2xlarge | $0.50 |
m5n.4xlarge | $0.50 |
r4.xlarge | $0.50 |
r6i.2xlarge | $0.50 |
r6i.xlarge | $0.50 |
t3.large | $0.50 |
Vendor refund policy
We do not currently support refunds at this time
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Additional details
Usage instructions
Resources
Vendor resources
Support
Vendor support
Please see the AppGate Support page for information on the details and level of support offered https://www.appgate.com/support This product will be supported through AppGate Federal's standard support terms found at
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By AppGate Federal
By Barracuda Networks
Top
25
In Continuous Integration and Continuous Delivery
Top
10
In Device Connectivity
Top
10
In Device Connectivity
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Zero Trust Network Access Architecture
Cloud-native, unified, API-enabled solution implementing zero trust network access principles with one-to-one encrypted network segments for each user to explicitly granted resource locations
Multi-Tunnel Encrypted Connectivity
Delivers consistent secure multi-tunnel access across multi-cloud, on-premises, and legacy applications from any location or device
Device-Agnostic Access Control
Supports reliable secure access from managed and unmanaged devices across all makes and models without device-specific restrictions
Automated Access Management
Enables concurrent and automated access to multiple disparate environments with explicit resource grant mechanisms, eliminating manual access approval workflows
Cross-Environment Resource Access
Provides unified secure access to resources regardless of physical location or virtual segmentation across diverse infrastructure environments
Multi-Platform Client Support
OpenVPN client software compatible with Windows, macOS, Linux, Android, iOS, and ChromeOS environments
Authentication Methods
Built-in local authentication system with support for Active Directory, PAM, LDAP, RADIUS, SAML, and custom Python3 authentication modules
End-to-End Encryption
End-to-end encryption with granular access control to secure remote access, site-to-site VPN connectivity, and SaaS access
Certificate PKI Management
Certificate-based Public Key Infrastructure management for simplified installation and configuration
Traffic Optimization and Load Balancing
DNS round robin load balancing across Access Server clusters with selective private traffic tunneling to optimize network bandwidth
Software-Defined WAN (SD-WAN) Engine
Built-in SD-WAN engine combining multiple remote access and WAN optimization technologies for secure access to cloud resources across office and mobile users.
Intrusion Prevention System (IPS)
Integrated IPS engine providing real-time network protection against a broad range of network threats.
Application-Based Traffic Control
Enterprise-grade firewalling with application-aware segmentation and traffic control based on application identity, ports, and user identity.
Network Access Control
Network access control enforcement capabilities for enforcing security policies across dispersed network environments.
VPN and Secure Connectivity
VPN technologies enabling secure remote access, secure office-to-cloud connectivity, and cloud network segmentation with support for branch office direct internet schemes.
Standard contract
No
No
No
Customer reviews
Sachin Mohanty
Zero trust access has strengthened security and now streamlines remote work across all sites
Reviewed on Jun 21, 2026
Review provided by PeerSpot
What is our primary use case?
I work as a Cloud Operations Engineer at PowerSchool India Private Limited, and I have been using Appgate SDP for about four years. My company has nine sites where we use Appgate SDP before logging in so that we can access the cloud environment very efficiently and accurately without any hassles or disruptions from anywhere. We provide our credentials, authenticate, and log in to the application, connecting to all nine sites used in PowerSchool . My team utilizes Appgate SDP in the same way within the Appgate environment.
What is most valuable?
The first best feature that Appgate SDP offers is the Zero Trust architecture, which is the biggest strength. Regarding micro-segmentation, users can only see and access the applications they are authorized to use.
Appgate SDP has positively impacted my organization by strengthening our security posture and providing more granular control over access to internal resources we handle daily. The Zero Trust architecture and micro-segmentation have helped reduce the attack surface and minimize the risk of unauthorized access while improving the remote access experience and reducing reliance on traditional VPN infrastructure. Overall, Appgate SDP has enhanced visibility, simplified access management, and supported our security and compliance requirements efficiently.
What needs improvement?
The reporting can be improved, as Appgate SDP is strong but could benefit from enhanced reporting features. This would improve visibility and simplify operational monitoring, along with simpler initial deployment. The initial setup and configuration require a good understanding of Zero Trust principles. The user interface can also be improved, as the administrative interface and policy workflows would make day-to-day operations easier for security teams. Additionally, more AI-driven insights such as anomaly detection and automated policy recommendations would further enhance security operations, along with richer reporting and dashboard capabilities.
Regarding scalability, we can improve it for larger-scale deployments, making the platform more effective for growing enterprises and benefiting organizations with large and distributed user populations. Many users starting with Appgate SDP would see improvements from better centralized policy management for large environments and more efficient handling for large-scale deployments while improving monitoring and reporting across multiple regions. Additional automation capabilities would also support expanding infrastructures.
For how long have I used the solution?
I have been using Appgate SDP for four years, and I started using it at PowerSchool.
What do I think about the stability of the solution?
Appgate SDP is very stable and efficient.
What do I think about the scalability of the solution?
It has good scalability and supports our growing user base and infrastructure requirements. The platform's flexible architecture and centralized policy management help extend secure access across multiple environments, and as organizations scale, additional integrations, centralized administration, reporting, and automation further simplify management for large and distributed deployments.
How are customer service and support?
Customer support is quite good. When we raise any case or issue, we receive a good response from them, and they often resolve our issues.
Which solution did I use previously and why did I switch?
Earlier, we used a regular VPN, but since PowerSchool, I have been using Appgate SDP, which has been very useful and efficient for us.
What was our ROI?
There are several things that have helped our organization. Appgate SDP helped us save time and reduce operational costs by simplifying secure remote access compared to traditional VPN infrastructure and streamlining process management through policies. With the Zero Trust approach, we administer secure user activity without exposing the entire network. The centralized policy framework reduces the time required to provision and manage access, resulting in both time savings and improved security.
What's my experience with pricing, setup cost, and licensing?
Regarding pricing and setup cost, everything is already pre-installed in my organization, so I am not sure about pricing details, as the other team handles it.
What other advice do I have?
I would rate Appgate SDP a 10 out of 10 and recommend it to every company. It has overcome the VPN model, and Appgate SDP is currently in a thriving state where every organization is using it.
The multiple factors, especially the Zero Trust policy, stand out the most for me, which is why I recommend a 10 out of 10.
Regarding governance and security, Appgate SDP primarily focuses on Zero Trust Network Access where it controls access based on user identity and device posture, which helps strengthen security. Moreover, having advanced AI capabilities such as predictive threat detection and automated policy recommendations further strengthens the solution, making governance and security among Appgate SDP's strongest capabilities. This significantly improves our organization's security posture and enforces the principle of least privilege.
I have been using Appgate SDP since the beginning of my time at PowerSchool.
I strongly recommend Appgate SDP to every organization because it overcomes traditional VPN limitations. I strongly recommend Appgate SDP because of its scalability and Zero Trust platform service, making it highly suitable for various options. My overall rating for this product is 10 out of 10.
Luciana S.
Robust Zero-Trust Remote Access with Flexible Deployment and Great Visibility
Reviewed on May 27, 2026
Review provided by G2
What do you like best about the product?
Appgate SDP gives zero trust or tolerance to network access and this ensures there is robust network security more than any traditional VPNs
The software provides detailed access controls and this revolves device posture, user identity, context and location.
Appgate is helpful in offering secure remote access and no internal network exposure experienced
The program issues scalable security support, more so on remote and distributed workforces
The deployment for Appgate is flexible, and it can work on cloud, on premises or hybrid without problems
The configuration process is simple and it has a user friendly access encounter
Appgate provides brilliant visibility, more so on network activity and user access
The software provides detailed access controls and this revolves device posture, user identity, context and location.
Appgate is helpful in offering secure remote access and no internal network exposure experienced
The program issues scalable security support, more so on remote and distributed workforces
The deployment for Appgate is flexible, and it can work on cloud, on premises or hybrid without problems
The configuration process is simple and it has a user friendly access encounter
Appgate provides brilliant visibility, more so on network activity and user access
What do you dislike about the product?
Appgate has complex architecture planning, which makes the initial set up challenging
The tool demands some expertise on security and networking more so during the deployment phase
The tool demands some expertise on security and networking more so during the deployment phase
What problems is the product solving and how is that benefiting you?
Appgate gives secure network access to authorized users and this happens to different applications, internal infrastructure and sensitive systems
The program gives protection to hybrid and remote work, helping employees to have secure access from any working environment
Appgate manages complex access permissions and this includes user authentication, device trust validation and among others
The program is designed to protect sensitive data and applications, for instance, cloud workloads, financial systems, and administrative systems
Appgate eliminates exposure to to any attacks that may be internet based and this includes launching unauthorized scans
There is zero trust security measures and this allows proper trust verification, identity centric monitoring among others
The program gives protection to hybrid and remote work, helping employees to have secure access from any working environment
Appgate manages complex access permissions and this includes user authentication, device trust validation and among others
The program is designed to protect sensitive data and applications, for instance, cloud workloads, financial systems, and administrative systems
Appgate eliminates exposure to to any attacks that may be internet based and this includes launching unauthorized scans
There is zero trust security measures and this allows proper trust verification, identity centric monitoring among others
Brandon G.
Smart, Secure Remote Access with AppGate SDP
Reviewed on May 22, 2026
Review provided by G2
What do you like best about the product?
I find AppGate a smart solution for remote access and micro-segmentation that assimilates with your centralized user security structure very well. I love the inherent DOS security features of the system such as no open scannable ports on their appliances. I find the site, collective and user management approach of the system very practical and effective. Since changing our remote access to AppGate literally all of our network engineers have complimented on the intuitiveness of the client and resiliency of the connections. SPA key coupled with MFA and with continuous IdP re-authentication represents a strong security posture imo. AppGate SDP is a very flexible system and has a lot of cool features from a security engineering perspective. The AppGate team has been very responsive and helpful and have continuously proven their proficiency of ZTNA and network security. Also, I find the per user pricing structure of the product a value. I highly recommend the product.
What do you dislike about the product?
As with all new products that take a different approach, there will be a learning curve. AppGate is no different. The product heavily relies on how well thought through your Identity Provider and DNS systems are and requires the customer to be prepared to implement such a system. Ultimately, it is for the better.
What problems is the product solving and how is that benefiting you?
Remote access, micro segmentation and ZTNA preparedness are just a few. Also, use cases for integrating access across IPv4/IPv6 dual-stacked networks and bridging those with legacy systems.
Rajeev_Ranjan
Zero-trust access has improved our secure VPN connectivity and protected internet usage
Reviewed on May 20, 2026
Review provided by PeerSpot
What is our primary use case?
My main use case for Appgate SDP is for security purposes. We are trying to use it to connect with our VPNs and the network so that we can improve our organization's security.
A specific example of how we use Appgate SDP for security and with our VPNs is that Danfoss security team has implemented a no-trust policy, requiring everybody to install Appgate SDP with a default account. Whenever we start our system, it will automatically connect to the different VPNs through which our network is going. If it is disabled, we are unable to access the internet, as all our network goes through a firewall. If Appgate SDP is not connected to all of the VPNs, then we are not able to browse the internet.
What is most valuable?
In my experience, the best features Appgate SDP offers are reliable connectivity across different environments and strong policy-based access.
When I mention strong policy-based features, I mean that if I want to secure all the systems in my organization, I can apply a particular policy through which all the network has to go, making it easy to implement security compliance throughout the organization.
Appgate SDP has positively impacted my organization, as we are using it to securely access the internet after the cyber attack. After the implementation of Appgate SDP, I did not hear about any security incidents.
What needs improvement?
If I could change or improve anything about Appgate SDP, it would be to enhance the user experience by improving the UI so that it is more explanatory. Currently, the UI feels as though it is doing something behind the scenes, and at first sight, nobody can understand what this application is for. I think that is the main thing regarding needed improvements.
For how long have I used the solution?
I have been using Appgate SDP for around two years.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup cost, and licensing is that this whole thing is managed by the security team, and there are different teams involved, so I do not have knowledge about cost. I think it is important for security because if a security incident happens, you lose more money than you save.
What other advice do I have?
I do not have anything else to add about my main use case or how it is set up for my team. I do not have anything else about the features I find valuable.
My advice for others looking into using Appgate SDP is to use it, as it is a good application.
T Nagesh K.
Appgate SDP Delivers True Zero Trust with Fast, Direct Access
Reviewed on Apr 23, 2026
Review provided by G2
What do you like best about the product?
I like Appgate SDP best because it enforces true Zero Trust by making applications invisible and granting fast, direct access only to explicitly authorized users—without exposing the network
What do you dislike about the product?
I don’t have any specific dislikes at this time; it has effectively met our security and access needs.
What problems is the product solving and how is that benefiting you?
Appgate SDP addresses the issue of overly broad, VPN‑based network access by enforcing true Zero Trust access only to authorized applications. For us, this translates into a reduced attack surface, stronger security, and seamless access for users.