Only admins with full policy access can add or edit the workload groups.

The Workload Group page enables you to create workload groups to apply security policies for your cloud workloads deployed on the public cloud service provider such as the Amazon Web Services (AWS) platform. You can create a workload group by building an expression using various tag types and key-value pairs. You can use a maximum of 8 key-value pairs to build an expression for a workload group. To learn more, see Understanding Workload Groups.

You can use the workload group as a criterion in ZIA policies such as SSL Inspection, Firewall Filtering, URL Filtering, and DLP to apply security policies to the workload traffic.

Prerequisites

Ensure that your organization has a subscription to one of the Workload SKUs and an account in Zscaler Cloud & Branch Connector Admin Portal. When subscribed, contact Zscaler Support to enable the Workload Discovery Service Endpoint to access the Workload Groups feature.

About the Workload Groups Page

On the Workload Groups (Administration > Workload Groups) page, you can do the following:

1. Add a workload group.
2. Search for a workload group.
3. View a list of all configured workload groups. For each group, you can view the following information:

• Name: The name of the workload group.
• Description: Additional notes or information about the workload group.
• Last Modified By: The name of the latest user who modified the workload group.
• Last Modified On: The date and time the workload group was last modified.

4. Modify the table and its columns.
5. Edit a workload group.
6. Delete a workload group.