Zscaler Internet Access Reviews

Zscaler provides web security on the cloud for any device at any place all the time. If you use local appliances, users are not protected when they are connecting from outside the corporate network (e.g., home office, hotspots, airports, etc.).

We use Zscaler from all our locations, and for our roaming users too. In order to integrate our users to Zscaler, we use Okta (ADFS) for authentication, cloud security connectors for traffic redirection from locations (tunnels to the Zscaler cloud), and the Zscaler app for roaming users. 

One on the main benefits is protection all time from anywhere. 

Zscaler excels in security protection and the cloud is always up-to-date. It does not matter if you are a small or big organisation, you will receive the same security quality. 

In terms of management and visibility, there is a single panel where you can configure the policies for your entire organisation worldwide and the reporting tools are brilliant.  

Zscaler provides a lot of features in terms of control (URL filtering, cloud app control, etc.), which can be found in other solutions as well, but in terms of security, it is quite unique. SSL inspection, Advanced Threat Security, and Cloud Sandbox are probably the most valuable. 

• SSL inspection is easy to implement and the performance is great (it is the responsibility of Zscaler to provide it). 
• Advanced Threat Security protects you from most threats that can bypass the classic anti-malware solution.
• Cloud Sandbox completes the stack of security requirements stopping zero-day malware.

Do not expect to pay for the service and start using it, like Gmail. Zscaler requires a proper implementation to be done to make it successful.

When you have appliances, SSL inspection is always a headache due to poor performance and/or lack of ciphers implemented. 

After a proper implementation, the maintenance is very low.

Be aware that you will need to invest some time and money to adapt your environment for Zscaler (traffic redirection, software deployment, authentication, etc).

The solution is primarily used as a secure web gateway.

Overall, it's a good solution. 

We had very few issues during implementation.

Technical support is quite helpful and responsive once you get a hold of them. 

It has private access and has a lot of features inbuilt including DLP, CASB, et cetera. 

The solution is scalable and stable. 

The solution can be a bit pricey.

Sometimes, support isn't available. 

Zscaler does not have any local data centers. For example, if we have our customers in Czech Republic, in the Czech Republic they don't have their data center, as the local content, in the Czech language. They should do something in the Czech Republic and ensure that the language is accessible. They should have one data center as these people want to see the local content. Everyone wants to see their first language in the available content.

Also, in Brazil, they just have two data centers in São Paulo and they should consider expanding to other data centers.

When you check the logs, you cannot see what policy is allowed. That is one thing that is lacking. If I put someone's account in Zscaler, then it should show which policy it will be applicable for. For example, in Forcepoint we have that feature. This is something that Zscaler needs to add. They just need to put the account of some users and check whether they will be able to access that or not.

They don't have MFA, or multi-factor authentication, for admins.

I've used the solution for about one year and three or four months. 

The solution is stable. There are no bugs or glitches. It doesn't crash or freeze. It's reliable.

The solution is very scalable. If a company needs to expand it, it can do so. It's on the cloud, which makes scaling easy.

The support is great. They helped us during implementation. 

When we ask for support, however, they reschedule the calls. Support guys are not always available. If I schedule the call for three to four days before, they will reschedule it. Sometimes, we'll join the call and they won't and then they'll just reschedule. That is something that has been disappointing. 

The implementation process was pretty straightforward. We did not run into issues. 

We did have some issues in that there were professional services that were purchased already, however, we came to know very late that we had any professional services support available from the vendor. We ended up handling things ourselves. The professional services were okay, however, they just were able to help us at a high level with recommendations.

The product is a bit expensive. That said, that is not in our scope to worry about pricing. 

We were integrated with Azure Identity. We are not sure if the client has their own data center or what they are using in that backend, or which cloud provider.

I would rate the solution a nine out of ten.

Zscaler is securing entire cooperate traffic using its different modules. This includes URL & aapplication filtering, malware & threat protection, bandwidth control, sand boxing and advanced fire-walling etc. Specifically, I like the URL filtering/user authentication. DLP and firewall features are also an added advantages. Also, there are various traffic forwarding mechanisms such GRE, pac file, VPN etc.

Since this is a cloud based product, we don't have to bother about the hardware/physical status and space. No need to monitor and manage the hardware. If there's an issue, Zscaler will switchover to another node to process the customer traffic.

Using location admin users should be better so we can merge any centralized authentication servers like AD, Radius, and any other server. This would help centralize the server management. v5.2 is being released shortly, and will have a lot of new features for TLS and HTTPS transactions.

Morethan 6 years

NO

Initially there were issues interms of stability and improved a lot now.

Zscaler is very easy to scale.

They have very excellent support team

It's an excellent product, and there's no need to worry about the hardware and maintenance cost.

We can manage our IT rules and policies using online portal.

The use cases of the solution are vast. CASB is a part of the product.

The solution has policies that work on client connectors. It’s pretty decent.

SSL inspection is a valuable feature.

The tool should improve the predefined dictionaries. The product should focus on improving its current features. They are good, but they need a lot of polishing.

I have been using the solution for almost a year. I am using the latest version of the solution.

I rate the tool's stability an eight out of ten.

The scalability of the tool is pretty good. I rate the scalability a nine and a half or ten out of ten.

The product must improve its support.

Neutral

The initial setup was straightforward. The solution is deployed on the cloud.

I see an ROI on the product.

The pricing is decent, but it is not that low. If we need any extra features, the price will increase.

People wanting to use the solution must not rely much on predefined dictionaries. I would recommend the product to others. Overall, I rate the product an eight out of ten.

Our primary use case of this solution is for the protection from malware and malicious attacks. We also use it for bandwidth control to compare business and individual use. We use it in conjunction with Palo Alto. 

The most valuable feature is bandwidth control. It has good traffic visibility. 

The implementation process needs improvement. Even if you have implemented it, it doesn't mean that it is done, you have to pay for the service afterward. It's not a one-shot implementation, you need to spend some more effort on it afterward.

It also needs better integration with other applications as well. There are some restrictions.

I would like to see them incorporate a user ID or application ID in the next release of this solution. 

Since you need to maintain it the maintenance payout is not that good. I cannot say that it's stable.

In my company, we have around five thousand users, but just the main account would be around three thousand. 

It works every day and it's protecting against the attacks and so we are using on a daily basis.

I would rate their technical a four out of five, based on my experience with some support cases. Their support is good. 

The initial setup was okay but the problem is that afterward, you have to put in more time and money. 

We used a consultant for the deployment. 

It's not an expensive solution but it is more expensive than some of its competitors. The licensing model is good if you pay for the medium-level licensing model. We get many features with the license but if you would like to integrate with other things, you have to spend time and money for the maintenance but other than that you don't have to buy additional new licenses. 

It was also one of four other products I believe but the Zscaler I can say that for bandwidth control, it is good, so we are not using at the moment data loss prevention feature so I cannot comment on that, but I believe, when you use Zscaler, you are not protected from all malware and malicious attacks, so you may need another tool just to cover these gaps. Zscaler is not enough for advanced protection. You need an additional tool.

Bandwidth control, reporting, and visibility are good but the cloud-based and the advanced protection aren't so great so I would give it a six out of ten.