As organizations embark on adopting zero trust network access (ZTNA) solutions, they often desire the flexibility of a hybrid strategy with the choice to use a mix of SaaS-based and / or customer-managed solutions to best suit their needs. Particularly organizations with closed networks, highly regulated environments, and / or strict data & privacy controls continue to prefer an on-premises solution while leveraging a vendor-operated cloud-based solution where it makes sense without compromising security and end-user experience outcomes.
One year ago, we launched Citrix Secure Private Access service — a cloud-based zero trust security solution that provides comprehensive ZTNA to all IT-managed applications, a curated end-user experience through Citrix Enterprise Browser, adaptive authentication, app protection, and adaptive security controls including Remote Browser Isolation, to provide unified access and protect against data loss threats. Citrix has been a leader in delivering unified, secure, zero trust access to enterprise applications for decades. We are committed to the principles of “Never Trust, Always Verify” and have continued our innovation to meet our customers where they are in their secure access strategy.
Today, we are pleased to announce the General Availability of Secure Private Access On-Premises solution — a major milestone in our journey to deliver ZTNA as a full customer-managed on-premises solution.
What is the Secure Private Access On-Premises solution?
Citrix Secure Private Access On-Premises (SPA On-Prem) is a customer-managed Zero Trust Network Access (ZTNA) solution that provides VPN less access to Internal web and SaaS applications with least privilege principle, single sign-on (SSO), Multifactor Authentication, and Device posture assessment, application-level security controls and app protection features along with a seamless end-user experience.
The solution leverages the StoreFront on-premises and Citrix Workspace app to enable a seamless and secure access experience to access web and SaaS apps within Citrix Enterprise Browser. This solution also leverages the NetScaler Gateway as the remote access proxy for web app sessions from the Citrix Enterprise Browser, enforcing multi-factor authentication and authorization controls. No upgrades are required in Storefront on-prem and NetScaler, and this solution works with Citrix’s existing infrastructure.
What use-cases does SPA on-prem solve for customers?
Citrix Secure Private Access (SPA) On-Premises solution with Citrix Virtual Apps and Desktops (CVAD) On-Premises provides a unified and secure end-user experience to both virtualized resources and browser-based apps (web apps and SaaS apps) with consistent security.
SPA On-Premises solution is designed to address the following use cases via a customer-managed ZTNA solution.
Use case #1: Secure access for Employees & Contractors to internal web and SaaS apps from managed or unmanaged devices without publishing a browser or using VPN.
Use case #2: Provide comprehensive last mile Zero Trust enforcement with admin configurable browser security controls for internal web and SaaS apps from managed or unmanaged devices without publishing a browser or using VPN.
Use case #3: Accelerate Merger & Acquisitions (M & A) user access across multiple identity providers, ensure consistent security and provide seamless end-user access across multiple user groups.
SPA on-prem solution demo
What are the requirements for using SPA On-Premises?
Versions:
- Citrix Workspace app (CWA includes Citrix Enterprise Browser)
- Windows – 2303 and above
- macOS – 2304 and above
- Citrix Virtual Apps and Desktops – Supported LTSR and current versions
- StoreFront – LTSR 2203 or non-LTSR 2212 and above
- NetScaler Gateway – 12.1 and above
- Global App Config Service (GACS): Optionally needed for browser management of Citrix Enterprise Browser
Get Started Today
Learn more about Citrix Secure Private Access solutions at citrix.com or connect with a Citrix expert to schedule a demo. More information can be found in the public documentation here:
https://docs.citrix.com/en-us/citrix-secure-private-access/secure-private-access-for-on-premises.html
Deployment guide:
https://docs.citrix.com/en-us/tech-zone/build/deployment-guides/secure-private-access-on-premises.html
