Universal ZTNA Onboarding

Universal ZTNA provides secure access to applications and networks from anywhere, making it easy for users to connect seamlessly to their resources.

There are three types of secure access offered by Universal ZTNA:

Secure Application Access provisions access to resources, applications at private data centers, Infrastructure as a Service (IaaS), such as Google Cloud Platform (GCP), Amazon Web Services (AWS) and Microsoft Entra ID or Software as a Service (SaaS) applications
Secure Network Access provisions wired and wireless network access for users and devices
Secure Hybrid Access combines application and network secure access

Note

This document only covers the Secure Hybrid Access onboarding method because it is the most comprehensive method. Secure Application Access and Secure Network Access are subsets of Secure Hybrid Access.

Each access method has three types of Identity Providers (IdP), but you can only configure one. The IdPs are:

Microsoft Entra ID
Google Workspace
Microsoft Active Directory

Note

ExtremeCloud Universal ZTNA IdP is only for trialing Universal ZTNA using Secure Application Access. To complete the trial setup, see Complete a Universal ZTNA Trial Assessment.

After configuring your IdP, you must complete additional steps. Depending on the type of secure access you choose, not all steps are required.

Create access groups
Add resources
Add applications and create application groups
Define networks and network groups
Create policies