Over its history Netskope has delivered many tools to integrate its various solutions and findings with Microsoft products. We have built multiple integrations with Azure Active Directory, Azure Sentinel, Azure Monitor, and Azure Blob and Compute. All of these are very helpful in unlocking base or advanced functionality to augment Microsoft solutions. However, instantiating the integrations themselves can be tricky, especially for Microsoft “shops” where administrators have migrated to a DevOps approach to deploying solutions.
Netskope understands that a solution, no matter how useful, needs to be as easy as possible to deploy—that is why we are so pleased to introduce our customers to the Netskope Accelerator Package for Azure.This solution streamlines integrations between Microsoft and Netskope through tools, guides, demos, and language that are Microsoft and Azure DevOps friendly.
To help Azure Cloud Architects map and align Netskope solution components with Microsoft landing zone design areas, we built the “Netskope Accelerator Package for Azure.” The package provides guidance and the required tools to enable cloud architects to successfully roll out Netskope security components into their Azure estate.
Azure Cloud Architects view their cloud estate holistically; they are looking to align any technology solution to the Microsoft Cloud Adoption Framework for each design area. The Netskope security platform is a security service edge (SSE) solution, born in the cloud. It has two solution components that require provisioning in the cloud environment depending on the specific use case.
If the Cloud Architect wants to enable private access to an organization’s internal applications (IaaS & PaaS) then Netskope Publisher NVA needs to be provisioned and for the lens of Microsoft Cloud Adoption Framework, it can be deployed in the “Connectivity Subscription”. If the Cloud Architect wants to consolidate logs into Azure Sentinel, then Netskope Cloud Exchange needs to be provisioned, or if they are looking to enable various integrations with other security solutions, this Netskope solution component can be deployed in the “Management Subscription” where the architect has a Log Analytics Workspace and Microsoft Sentinel.
By delivering the Azure Accelerator Package, Netskope has laid the groundwork for implementing many of the integrations it has built with Microsoft—threat sharing with Defender for Cloud and Defender for Endpoint, Azure Active Directory risk sharing and conditional access + reauthentication, and more!
For those who want to learn more, check out these deployment videos and community posts that provide guidance to Azure Cloud Architect towards design area, including:
- Help me understand my options to steer traffic from Azure to Netskope.
- Can you send me all Netskope log data in Microsoft Sentinel?
- Enable Secure Access To Azure PaaS Services Using Azure Private Endpoint With Netskope.
The package can be found in both a terraform code or ARM template in Netskope’s public Github repositories here. The Netskope Azure Sentinel workbook is published as a Microsoft Sentinel gallery item and is available through the Azure portal. Finally, the Netskope Azure Sentinel Playbook is published in the Microsoft GitHub account here.