Netskope productsDeployment options

Deployment Options

The Netskope Security Cloud supports a variety of deployment methods. Options range from API connectors for managed apps to inline options for achieving real-time protection.

Choose one deployment method or combine multiple

Most customers choose to combine an API deployment with a forward and/or reverse proxy deployment, given the expanded use case coverage. This enables protection for data at rest in managed cloud apps in addition to real-time protection enabled by a proxy-based deployment.

The Netskope
Security Cloud

See our platform →

Unrivaled visibility. Real-time data and threat protection.

The Netskope Security Cloud provides unrivaled visibility and real-time data and threat protection when accessing cloud services, websites, and private apps from anywhere, on any device. Only Netskope understands the cloud and takes a data-centric approach that empowers security teams with the right balance of protection and speed they need to secure their digital transformation journey.

Deployment options

API

Use API connectors to connect the Netskope Security Cloud to managed cloud apps like Office 365, Box, Salesforce, Google G Suite, AWS, and more. An API deployment provides out-of-band visibility and control of data at rest in managed cloud apps and is also required for IaaS continuous security assessment functionality.

Read more

Netskope client

The Netskope client provides real-time visibility and control of managed devices accessing the cloud and web from anywhere. The Netskope client has a tiny footprint, takes minimal CPU resources, and simply steers cloud and web traffic from managed devices to the Netskope Security Cloud. All proxying and security functionality is performed in the cloud vs on the client.

Read more

Forward proxy

Netskope provides forward proxy configurations that do not require a footprint on the endpoint. The Netskope Secure Forwarder can be deployed on-premises as a virtual machine, steering local cloud and web traffic to the Netskope Security Cloud. Netskope can also be integrated with your existing proxy as a proxy chain.

Read more

Reverse proxy

Netskope provides a reverse proxy deployment mode that steers browser-based cloud traffic from managed cloud apps to the Netskope Security Cloud. This deployment option is required for covering unmanaged devices that are off network accessing managed cloud apps.

Read more

GRE/IPSEC

The GRE/IPSEC deployment option steers local cloud and web traffic from the router to the Netskope Security Cloud.

Read more

Log parsing

Netskope can be configured to parse log traffic from a perimeter device. This provides out-of-band discovery of cloud services. Logs can be uploaded directly to the Netskope Security Cloud or an on-premises log parser can be deployed to continuously send log data to the Netskope Security Cloud.

Read more

With Netskope we get one control point for all of our cloud apps. That’s huge for us from a time and training point of view.

—Sajawal Haider, CISO, Oak Hill Advisors

Trusted by leading companies

Request a demo

Get in touch with a Netskope representative to see a live demo.