Zscaler offers a cloud-based service that allows organizations to obtain IP addresses managed by Zscaler and use them as their dedicated source IP address for applications that require IP-based authentication. With this solution, organizations can enable their users to send and receive traffic from specific SaaS applications or domains that restrict access based on the source IP address of the traffic. To learn more about the use cases, see Using Dedicated IP.

Zscaler-managed Dedicated IP uses the following features and configurations:

• Zscaler Private Access (ZPA) App Connectors deployed in Zscaler's data centers to establish a secure authenticated interface between your servers and the ZPA cloud.
• Forwarding policies to steer selective traffic processed by ZIA to the internal or external destination servers of your choice via ZPA App Connectors, ensuring that Zscaler secures the traffic and that the source IP address is dedicated to the customer and provided by Zscaler.

By using forwarding policies for Zscaler-managed Dedicated IP, you can control the source IP address of the traffic forwarded to the destination servers. These dedicated source IP addresses are owned, hosted, and provisioned by Zscaler for your organization.

The configuration and workflow for Zscaler-managed Dedicated IP are similar to the customer-managed Dedicated IP (or Source IP Anchoring) solution. You can configure granular policies in the Zscaler Internet Access (ZIA) Admin Portal to forward the selected traffic to ZPA through ZIA's threat and data protection engines. These policies use ZIA and ZPA to selectively forward the application traffic to the appropriate destination servers via the App Connectors deployed in Zscaler's data centers. These App Connectors are exclusively dedicated to an organization's ZPA tenant and are assigned IP addresses that are unique to the organization. Organizations can view the IP addresses provisioned for their organization in their ZPA tenants after the App Connector is provisioned at a Zscaler data center. A Source IP Anchoring subscription is required. To learn more about configuring Zscaler-managed Dedicated IP, see Configuring Source IP Anchoring.

To learn more about Zscaler's Dedicated IP service delivered from the Zscaler cloud and to subscribe to the service, contact your Zscaler Account team.