Sophos ZTNA Tech Specs
Technical Specifications
| Supported Platforms | |
| Identity Providers | Microsoft Active Directory (on-premise), Microsoft Entra ID (Azure Active Directory), Okta |
| ZTNA Gateway Platforms | VMware ESXi 6.5+, Hyper-V 2016+, and Sophos Firewall v20+ (all hardware, virtual, and cloud platforms including AWS and Azure) |
| ZTNA Client Platforms | Windows 10 1803 or later, macOS 12 (Monterrey) or later; All platforms support agentless web application access |
| ZTNA Device Health | Sophos Security Heartbeat (Intercept X) |
| Gateway Specifications | |
| Recommended VM | 2 Core / 4GB |
| Multi-Node Clustering | VMs can be clustered with up to 9 nodes and Sophos Firewall can be deployed in HA for added gateway performance, capacity, and business continuity |
| Node Capacity and Scaling | 10,000 agent connections for a single node, up to 90,000 agent connections in a cluster (max. 9 nodes) |
| Deployment Options | |
| ZTNA-as-a-Service | Utilizes cloud gateways to manage and broker connections between devices and lightweight gateways deployed on-prem that connect automatically to the Sophos Cloud via regional Sophos cloud points of presence. This solution offers the ultimate streamlined deployment without requiring any firewall configuration and makes the applications more invisible and secure as a result. |
| ZTNA on-premise Gateways | Provides a private data plane connection directly between your endpoints and applications. This solution will be best for those customers who have concerns about latency via the cloud points of presence. |
| Hybrid Deployment | Your Sophos ZTNA deployments can use a hybrid mix of the above options if desired. |