Recently, we’ve encountered a use case we hadn’t seen before. Can GPO policies be applied to remote devices using ZTNA?
What could you share about this? From what we’ve seen, it seems possible. Any advice?
Page 1 / 1
Yes GPOs and other Microsoft Active Directory services work over NPA. So long as the user or machine (via Prelogon tunnels) have access to Active Directory via policies then GPOs should work without issue. This is a very common use case for ZTNA (NPA). If you’re encountering any trouble or have more specific questions please let me know. More info on using Active Directory with NPA can be found at https://docs.netskope.com/en/netskope-private-access-for-microsoft-active-directory-domain-services/.
If you have some of the newer features like latency based Publisher selection enabled then some of the above setup can be simplified.
Thank you for answering my question about GPOs. This is the first time we are encountering this use case.
I have a couple of questions: Even with legacy protocols, is using NPA to apply GPOs reliable?
What about the Netskope SD-WAN solution? Would it work better than NPA?
Reply
Login to the community
If you haven't already registered, now is a good time to do so. After you register, you can post to the community, receive email notifications, and lots more. It's quick and it's free! Create an account
Login with SSO
Employee Partneror
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.