Advanced Secure Private Access features
The following are some of the advanced features supported by Secure Private Access:
-
Custom workspace domains for accessing apps via Citrix Enterprise Browser: The custom workspace domain feature allows organizations to provide users with access to SaaS and private web applications through a branded, organization-owned domain (for example, workspace.company.com) instead of the default *.cloud.com domain. For details, see Custom workspace domains for accessing apps via Citrix Enterprise Browser. For details, see Custom workspace domains for accessing apps via Citrix Enterprise Browser.
-
Hybrid data path for Secure Private Access service: The hybrid data path for Secure Private Access service leverages both on-premises and cloud infrastructures to provide secure access to applications. Organizations can use the hybrid data path to route all data traffic through an on-premises NetScaler Gateway. This ensures that sensitive data stays within the company’s network. Even though the data traffic is routed through the on-premises NetScaler Gateway, Citrix Cloud can still be used for monitoring and managing the applications and users. For details, see Hybrid data path for Secure Private Access service.
-
Discover applications, domains, or IP addresses within your network: Helps an admin get visibility into the external and internal applications (HTTP/HTTPS and TCP/UDP apps) that are being accessed in an organization. This feature discovers and lists all the domains/IPs addresses, published or unpublished. Thus, admins can see what domains/IP addresses are getting accessed, by whom, and decide if they want to publish them as applications, providing access to those users. For details, see Discover applications, domains, or IP addresses within your network.
-
Context-based app routing and resource locations selection: Allows admins to edit the internal routing type per URL or resource location based on the user context. For details, see Context-based app routing and resource locations selection.
-
Policy modeling tool: Provides admins full visibility into the expected app access results (allowed/allowed with restriction/denied) based on their existing configurations. Admins can check the access results for any user based on conditions such as device type, device posture, geo-location, network location, user risk score, and workspace URL. For details, see Policy modeling tool.
-
Applications import tool: The Secure Private Access admin console includes a file import tool that allows administrators to bulk import multiple applications into the system using a CSV file or the nsconfig file. This tool is especially useful for organizations shifting from a traditional VPN to a more advanced solution like Secure Private Access. For example, organizations can use this tool to migrate applications that were delivered over a VPN to Secure Private Access and shift to a ZTNA-based architecture. Bulk upload of apps enables the organizations to eliminate the need for manual configuration. For details, see Applications import tool.
-
Terminate active sessions and block users/machines: - Enables admins to terminate all active sessions immediately and add the users/machines to the block list. Adding a user/machine to the block list terminates all active Secure Private Access application sessions and blocks future application access. For details, see Terminate active sessions and add users/machines to the block list.
-
Timeouts for user sessions: Allows admins to configure a timeout period for the Web apps and the Citrix Secure Access client to end user sessions if there is no network activity for the specified time period. For details, see Timeouts for user sessions.