Event banner
Event details
59 Comments
- Will there be the ability to select the regions that we can assign to users? I have a lot of customers with staff in Philippines the need to provide a node/gateway there for SSE [since hopping via Singapore adds significant latency to their connection]
tdetznerMicrosoft
That's great feedback, thank you for sharing. We are looking into these capabilities for future updates. Are you looking mainly towards private access based apps or internet based apps for these controls?- The organizations I am thinking of are mainly using internet based [SaaS apps] including M365 and 3rd party SaaS As you may be aware there is a massive and growing workforce based in Philippines that is working for overseas companies and they primarily use applications that are not based in Philippines. [Since the companies are not based there]. They also tend to use a lot of latency sensitive tools like Teams and VoIP So having a local node is key for low latency access into Microsofts global WAN network.
- When is windows on ARM going to be supported?
- TrevorRusher
Community Manager
Welcome! The Security Service Edge (SSE) AMA will start at 9:00 a.m. Pacific Time. What questions do you have for our experts? Post them early and we’ll use them to kick off the hour!
- If M365/Entra services go down, similar to last week, how will that impact end users using Internet Access or Private Access?
- We have designed the product from day 1 with breakglass capabilities during contingencies. These capabilities can be dialed in manually during outages to ensure business continuity. Reference: https://learn.microsoft.com/en-us/entra/global-secure-access/scripts/powershell-break-glass. Soon we will be releasing more automated provisions that the traffic can be automatically bypassed if the service is not reachable (based on admin preference).
- On a high level, how is Entra Private Access different from Entra Application Proxy, both regarding functionality and licensing? Are there plans to deprecate the latter in favor of the former?
- tdetznerThe Entra private access connectors extend the capabilities of Entra Application proxy. The new Entra Private access connectors are capable providing access to private access published apps as well as Application proxy apps. Please read here for more details: https://learn.microsoft.com/en-us/entra/global-secure-access/how-to-configure-connectors
- Abdi_SaeedabadiPrivate Access significantly expands Entra ID Application Proxy capabilities in Microsoft Entra to a complete ZTNA solution that shares the same connectors but offers so much more, it helps you simplify and secure access to any private resource on any port, and protocol. You can apply policies that enable secure, segmented, and granular access to all your private applications in your corporate network, on-premises, or in the cloud. If you are already using Application Proxy, you can seamlessly transition to Private Access – all existing use-cases and access to existing private web applications would continue to work with no disruption.
- We use defender for endpoint (along with all the MS related products). Is it recommeneded to use GSA - Entra Internet Access when we already have defender smartscreen accomplishing much of the blocked categories?
- Any hints on when the ios GSA-enabled defender application will be Generally Available?
- tdetznerWe are working on it and hope to have it in public preview soon.
- For entra Private Access: how do we setup the network security and access for cloud hosted resources, in the case of a severless resource/s (like a sql db)
- or at least some guidance on best practices on setting up these resources' network security settings to allow for Entra Private Access traffic ?
Sumeet MittalNetwork security and access for clous hosted resources can be configured in the similar manner through setting up an on cloud Private Network Connector in front of your cloud apps. For ease you can also deploy the connector through Azure or AWS Marketplaces.
- Heather_Poulsen
We hope you're looking forward to this AMA! Feel free to post your questions early here in the Comments—and please post one Comment per question to make it easy for our product team members to see them all. Thank you!
- For entra Private Access: how do we setup the network security and access for cloud hosted resources, in the case of a severless resource/s (like a sql db)
- Any hints on when the ios GSA-enabled defender application will be Generally Available?
- We use defender for endpoint (along with all the MS related products). Is it recommeneded to use GSA - Entra Internet Access when we already have defender smartscreen accomplishing much of the blocked categories?
