Secure Private Access (ZPA)
Step-by-Step Configuration Guide for ZPA
This guide takes you through the configuration steps that you must complete to begin using Zscaler Private Access (ZPA) for your organization.
Before you begin configuring ZPA, Zscaler recommends reading the following articles:
Configuring ZPA
To configure ZPA, you must complete the following steps:
- Step 1: Update Company and Administrator Information
To update your company information and configure administrators as applicable, see the following articles:
- Configuring the Company Profile
- About Administrators
- Configuring ZPA Administrators
- About Roles
- Configuring Administrator Roles
To learn more, see Administration.
Close - Step 2: Configure Your Certificates
ZPA uses certificates to authenticate the App Connector and the user's device before each connection as well as provide access to web applications via internet browser. To configure your certificates, see the following articles:
- About Certificates
- About Enrollment (CA) Certificates
- About Browser Access (Web Server) Certificates
To learn more, see Certificate Management.
Close - Step 3: Configure Single Sign-On Authentication
ZPA supports single sign-on (SSO) via SAML so that your remote users can access enterprise applications without having to log in separately to ZPA. To configure SSO for ZPA, see the following articles:
To learn more, see Authentication.
Close - Step 4: Configure the Zscaler Client Connector
Installed on the user's device, the Zscaler Client Connector connects to the ZPA cloud to enable granular, policy-based access to your organization’s internal resources.
To configure the Zscaler Client Connector for your organization, see the following articles:
Also refer to the following platform-specific Zscaler Client Connector articles:
Close - Step 5: Configure Your App Connectors
App Connectors are lightweight virtual machines (VM) that you must configure in the data centers or virtual private clouds (VPC) that host your application servers. Once the App Connectors are configured, they can connect to the ZPA cloud to provide users with access to applications. To configure your App Connectors, see the following articles:
- About App Connectors
- Configuring App Connectors
- About Deploying App Connectors
- App Connector Deployment Guides for Supported Platforms
To learn more, see App Connector Management.
Close - Step 6: Configure Your Applications
You must configure the applications you want to make accessible to your users via ZPA. To configure applications, see the following articles:
To learn more, see Application Management.
Close - Step 7: Configure Your SAML Attributes
You can configure SAML attributes that you can then use when configuring policies. To configure your SAML attributes, see the following articles:
To learn more, see SAML Attributes.
Close - Step 8: Configure Your Policies
Your users cannot access applications until you configure policies for them. To configure access and timeout policies, see the following articles:
- About Policies
- About Access Policy
- Configuring Access Policies
- About Timeout Policy
- Configuring Timeout Policies
- About Client Forwarding Policy
- Configuring Client Forwarding Policies
To learn more, see Policies.
Close - Step 9: Configure Log Streaming
The Log Streaming Service (LSS) provides a better understanding of the information coming from the ZPA service, by allowing you to create log receivers that obtain information about App Connectors and users. To configure your log receivers, see the following articles:
To learn more, see Log Streaming Service.
Close - Step 10: Configure Your User Portals
You can configure user portals for your organization, that display links to applications that your users are allowed to access. To configure user portals, see the following articles:
- About User Portals
- Configuring User Portals
- About User Portal Links
- Configuring Application Links for User Portals
- About Zscaler Client Connector Download Links
- About User Portal Acceptable Use Policy
To learn more, see User Portal.
Close