For those customers who are starting the Zscaler Cloud services or planning to move on Zscaler for their Enterprise services, they need to be apprised of DAS (Deployment Advisory Service) which guides customers through the process of configuring Zscaler to suit your organization’s bespoke needs. Based on best practices learned over the years, Zscaler DAS service renders immediate deployments of Zscaler service in addition to ensuring quick time to value of the service. DAS is a one-time paid service and leveraged to get customers properly started on their deployment
Zscaler DAS Design Considerations
DAS design considers following focus areas –
1. Traffic Forwarding
This is the most important design and configuration requirement to get customer traffic flowing.
- Zscaler – will focus on questionnaire like traffic throughput etc. Zscaler provides practice guidance and configures cloud-side configuration.
- Customers – Provide the response to Zscaler questionnaire. Also, own and configure their own routers, firewalls, Switches and related network infrastructure.
2. Authentication (User Identification)
The goals is to provide granular policy control on a user and group level. Additionally, to deliver reporting visibility on a user and group level.
- Zscaler – Provides best practice guidance for user identification
- Customers – Own ID management systems and perform as per Zscaler recommendations.
3. Policy Enforcement
Focused on questions on existing policies and systems
- Zscaler – Provides best practice guidance and set-up assistance
- Customers – Provide policy requirements, perform as per Zscaler recommendations
4. Reporting + Logging
This function is focused around questions on SIEM, log retention and storage location
- Zscaler – Provides best practice guidance and set-up assistance
- Customers – Provide reporting and logging requirements and SIEM set-up
Key considerations while using the DAS service are –
- Speed to Value – Success criteria is to get > 25% of user traffic flowing in 90 days
- Proper Design – Resiliency, Redundancy, Performance
- Satisfaction – 30, 60, 90 day Check-ins
Continue Reading:
What is ZTNA (Zero Trust Network Access)
Zscaler Private Access (ZPA) Architecture
ABOUT THE AUTHOR
I am here to share my knowledge and experience in the field of networking with the goal being – “The more you share, the more you learn.”
I am a biotechnologist by qualification and a Network Enthusiast by interest. I developed interest in networking being in the company of a passionate Network Professional, my husband.
I am a strong believer of the fact that “learning is a constant process of discovering yourself.”
– Rashmi Bhardwaj (Author/Editor)
