Overview
The Prisma Access ZTNA connector supports client initiated traffic from Remote and Branch users. The Prisma Access ZTNA connector automatically creates tunnels to Prisma Access and Eliminates routing. The Prisma Access ZTNA connector can be deployed in overlapped networks (Applications in Overlapped RFC 1918 address space) to provide connectivity without NAT.
Highlights
- The Prisma Access ZTNA connector provides secure access for Private Applications in on-premise data center and Virtual Private Cloud
Details
Features and programs
Financing for AWS Marketplace purchases
Pricing
Vendor refund policy
Refunds provided in accordance with customer license and sales agreement
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
Prisma Access ZTNA Connector - 1 Arm Deployment
Use this CloudFormation template to deploy a ZTNA Connector in a "1 Armed" model, this has one interface for both WAN and App connectivity.
This template allows you to select an existing VPC + Subnet where you will deploy the connector. Within this VPC you must have both routing toward the Internet (via a NAT Gateway) and the Applications (if they are not within the same subnet) supported by this Prisma ZTNA Connector Group.
Before deploying the ZTNA Connector appliance you will need to first create a ZTNA Connector within the Prisma SASE Portal, the Connector "Key" and "Secret" will need to be copied out of the Prisma SASE portal and input into the Cloudformation Template.
Detailed documention on the solution and AWS deployment procedure can be found in the Prisma Access Techdocs: https://docs.paloaltonetworks.com/prisma/prisma-access
CloudFormation Template (CFT)
AWS CloudFormation templates are JSON or YAML-formatted text files that simplify provisioning and management on AWS. The templates describe the service or application architecture you want to deploy, and AWS CloudFormation uses those templates to provision and configure the required services (such as Amazon EC2 instances or Amazon RDS DB instances). The deployed application and associated resources are called a "stack."
Additional details
Usage instructions
To use the ZTNA Connector Appliance in Prisma Acces:
- To procure a license please contact your Palo Alto Networks account manager directly
- Obtain a token/secret from ZTNA Connector configuration within Prisma Access
- Launch the appropriate AWS CloudFormation Template for your use case
- 1 ARM Deployment (1 Interface for both WAN and App connectivity)
- 1 ARN + Auto-Scaling (1 Interface for both WAN and App connectivity + Auto-Scaling of connectors for additional throughput)
- 2 ARM Deployemnt (1 Interface for WAN and another inteface for App connectivity)
- Follow the Prisma Access Admin Guide here for more details: https://docs.paloaltonetworks.com/prisma/prisma-access/prisma-access-cloud-managed-admin
Resources
Vendor resources
Support
Vendor support
Email and telephone support provided in accordance with customer license and sales agreement
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
