No more typing reviews! Try our Samantha, our new voice AI agent.

Netskope Private Access vs Prisma Access by Palo Alto Networks comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Aug 11, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

iboss
Sponsored
Ranking in ZTNA as a Service
7th
Average Rating
8.4
Reviews Sentiment
6.9
Number of Reviews
22
Ranking in other categories
Secure Web Gateways (SWG) (6th), Internet Security (3rd), Web Content Filtering (1st), Cloud Access Security Brokers (CASB) (6th), Secure Access Service Edge (SASE) (7th)
Netskope Private Access
Ranking in ZTNA as a Service
15th
Average Rating
8.6
Reviews Sentiment
6.8
Number of Reviews
17
Ranking in other categories
No ranking in other categories
Prisma Access by Palo Alto ...
Ranking in ZTNA as a Service
4th
Average Rating
8.2
Reviews Sentiment
6.9
Number of Reviews
65
Ranking in other categories
Secure Web Gateways (SWG) (4th), Cloud Access Security Brokers (CASB) (1st), Enterprise Infrastructure VPN (5th), Secure Access Service Edge (SASE) (1st)
 

Mindshare comparison

As of July 2026, in the ZTNA as a Service category, the mindshare of iboss is 3.7%, up from 1.9% compared to the previous year. The mindshare of Netskope Private Access is 2.6%, down from 5.3% compared to the previous year. The mindshare of Prisma Access by Palo Alto Networks is 10.1%, down from 14.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
ZTNA as a Service Mindshare Distribution
ProductMindshare (%)
Prisma Access by Palo Alto Networks10.1%
iboss3.7%
Netskope Private Access2.6%
Other83.6%
ZTNA as a Service
 

Featured Reviews

Ashok Ananthula - PeerSpot reviewer
Senior Consultant Proxy Engineering at a financial services firm with 10,001+ employees
Cloud gateway has strengthened remote web security and now needs better Mac and ISP support
The problem our organization had is that iboss failed for the Mac devices. It is not able to give a successful agent for the Mac agents. That is where in 2025, we had to migrate to the Palo Alto-based platform. If your use case is for just Windows laptops,you can consider this platform as an option One issue is the data center resiliency part. In India especially, they are not tied up with the Tier 1 ISPs like Tata or Airtel; they were having Tier 2 ISPs and encountered many issues reaching few major sites that my organization depends on, and they were having problems that they could not fix quickly. They also lack a mechanism to route that traffic within their data center; rather, they ask customers to make a pac file change to route it to Singapore explicitly. It would be better if they route from their backend , i mean even if I send it to India DC, they should be able to route it internally to make that work; however, they fail to do that and ask the customer to route it in the pac file. Another suggestion is that in China, they do not have the proper setup; they used to have numerous problems with slowness and lack of premium circuits in China as well. That leads to multiple sites working slowly with latency-related issues. So the main issue is the ISP-related problems that need to be solved.
Prathamesh Samant - PeerSpot reviewer
Presales Manager at a manufacturing company with 201-500 employees
Has ensured secure remote access through real-time device checks and policy controls
There is a mixed review on the integration part of Netskope Private Access. Wherever they have out-of-the-box support, it is quite easy to integrate. Wherever customization is needed, it depends on the openness of the application being integrated with. If the other application has an open architecture where you have easy API integrations, then it becomes easier. However, in some cases, it is a tedious task to do the integration where the application is not that open or it is not supported out-of-the-box from Netskope. They can introduce the DLP feature for Netskope Private Access. Zscaler has that DLP feature. It is in their roadmap, but currently, they don't have it. If they have data protection or data loss prevention within their NPA, that would be a significant advantage.
IgorPinter - PeerSpot reviewer
Director at PULSEC
Zero-trust access has improved remote security and now simplifies cloud-based firewall management
Regarding the integration part for Prisma Access by Palo Alto Networks, the integration with identity providers is pretty much good. It is basically firewall as a service, so it performs well. I completed the integration without any issues. What Palo Alto Networks can do better for Prisma Access by Palo Alto Networks is probably to have the point of presence available in more locations. The point of presence from the Serbia region has the nearest POP in Frankfurt, which is an issue since it is your gateway—when you start browsing the internet, you go through a commercial connection in Germany. They definitely need to spread the service in other countries.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I would rate the technical support of iboss a solid 10 without a shadow of a doubt."
"Content filtering is the most useful feature of iboss."
"The solution has massively improved our security posture, giving us full visibility into what our staff does online."
"Technical support is pretty sharp and very responsive."
"This product is solid, fairly easy to use, and reliable."
"iboss is definitely very good in terms of service."
"The iboss system is highly reliable. The false positive rates are small compared to some other systems we've experienced through other partner agencies who use competing solutions."
"The iboss solution gives me the ability to scan the traffic through all the ports, through all the 131,000 PCP and UDP ports, and with this ability, we have the granularity also for consults over social media and applications on mobile, and this is an advantage that the customers are looking for right now."
"In the VPN scenario, what was happening, the user would get back to the complete source. But in NPA, the application will go to the user. There is an outbound connection. There is no inbound. Storage providers are also not there. It's the best feature because it is the replacement of the VPN."
"They do one software or one platform; they are the leading CASBY platform in the world, and what they can do, nobody can do."
"Netskope Private Access covers a wide range of use cases with solutions for client-server and server-to-client connectivity patterns."
"The most valuable feature is being able to see who is accessing the application, whether it is a managed device or a bring-your-own-device published by Netskope."
"The initial setup of Netskope Private Access is pretty simple and straightforward."
"In the firewall, we don't have a user-based policies list, and we can't create them. Netskope helps us to create user-based policies. For example, if there are specific teams like HR or more than nine teams, and we want logs from access over particular URLs, and we don't want to allow that specific URL for certain users, we can create these policies in Netskope. It's handy, easy to use for new users, and has a cool GUI interface. We can create multiple policies, and as for the proxy, it's a leading solution."
"With private access or next-gen VPN, they are able to keep you secure, but they are invisible in terms of how they do it. Anybody working from home and trying to bring up VPN quickly can pretty much get VPN up and running in a matter of minutes because this doesn't require any VPN technology on-prem. All the VPN technologies that you're using to access applications on-premise can be eliminated by using their software. If you're accessing Microsoft 365 or salesforce.com, you can go straight out from your home office or home internet to that application rather than having to come through a VPN. It still has all the policies enforced, and it mitigates any business risks in terms of how that user is accessing that application and what they're doing inside of it. VPN piece is really critical, especially at this time of Covid, and your latency also goes down. Your latency gets better by using the platform because they're intercepting your traffic, routing it through their local data center, and then sending it to whichever SaaS service or whatever you're going to. It does it better, faster, and quicker with all your governance policies enforced, rather than you having to go through your data center. So, all the traffic gets hauls there, and then that traffic has got to route somewhere else, and then it has got to go up to the cloud. Your latency actually goes down. They can guarantee 15 milliseconds or less pretty much across anywhere on the planet for about 95% or 90% of it."
"Netskope enables users to securely access private applications remotely without a VPN."
"Speaking as an ambassador for Palo Alto and Prisma access, it's the best solution on the market."
"The crux of why we're using the product is because of the automations, and we are very confident that the product will keep us secure at all times."
"Customers are quite happy with Prisma Access by Palo Alto Networks because there is less spending on technologies."
"Security is absolutely spot-on, really top-notch. It's the result of all the components that come together, such as the HIP [Host Information Profile] and components like Forcepoint, providing end-user content inspection, and antivirus. It incorporates DLP features and that's fantastic because Prisma Access makes sure that all of the essential prerequisites are in place before a user can log in or can be tunneled into."
"Ultimately, Palo Alto is a very advanced firewall."
"The users can securely access any cloud data centers or cloud platforms, and in terms of the features, it has all the features that Palo Alto Next-Generation Firewall has, and it is also very stable and scalable."
"Prisma Access provides better app performance, allows all the traffic that's really needed for applications and internal resources without any impact on the hardware, and can be continuously scaled in case more resources are needed."
"There is a system for monitoring the traffic. You can monitor the traffic of the connected people and point out any issues on the connection part."
 

Cons

"I have heard they are doing DDoS filtering, but I am not certain if they are implementing it correctly."
"SSL decryption: We had issues with learners using apps instead of using web browsers. This type of encryption is tough for any appliance in a BYOD environment."
"Our biggest problem with their service was it did not recognize the device and filtering did not always work correctly."
"One thing I would like to see differently with their Zero Trust platform is that some of the AI aspects related to high-risk activities have more false positives."
"File integrity monitoring would be very advantageous as an additional feature."
"For zero trust implementation, we encountered complexity issues, especially with a large infrastructure company ExxonMobil."
"The reporting feature needs improvement."
"Fold that in with the risk intelligence they're getting from all of the different subscriptions they are a part of. Now, these security companies subscribe to things like emerging threats, databases, etc. You can fold all this intelligence to decide what's happening on an endpoint. I would love to see them start moving into that space. That would compete directly with Microsoft. Maybe that's why they haven't. Having that ability native within the solution would be great. The other area in which I would love to see improvement is more detailed descriptions of why they block websites."
"The ability to provide more security around agentless access has room for improvement."
"If we compare it with Zscaler, Netskope Private Access requires more configuration for setup of the overall solution."
"In some cases, it is a tedious task to do the integration where the application is not that open or it is not supported out-of-the-box from Netskope."
"I would rate the stability around seven out of ten. Sometimes, we face some difficulty, but it depends upon the complexity of the environment."
"Netskope detects certain data or contents, but there are some limitations on how we can customize those policies for DLP."
"The product is not easy to use."
"Netskope Private Access allows mapping only one DNS server. If a user uses a secondary DNS on-premises, Netskope fails to disconnect them. This is an issue that needs to be addressed."
"There could be an ability to access one server from another when we have console access to the first server."
"Lacks a hybrid model which has API plus in-line security."
"It applies commits to the firewalls slowly. There isn't an API you can use for anything. We've previously had trouble with the egress IP addresses though we expressed to engineering that those mustn't change. They changed several times without warning, causing a lot of headaches."
"The dependencies of applications sometimes are a bit confusing."
"The documentation is generally good, but they could provide a more detailed description of all the configuration steps. I have to search for information or call support. Palo Alto could add more knowledge base articles about configuration with screenshots and walkthroughs. That would be helpful. When configuring a product, you want to see examples of how it is done."
"Palo Alto needs to improve the GlobalProtect agent to work as a secure web gateway agent, not only as a VPN agent because some companies would want only a secure gateway. They wouldn't want a full VPN. So, Palo Alto has to make the VPN agent work as a secure web gateway agent for those customers who want only the secure web gateway solution."
"From any improvement perspective, the product's compatibility issues with Linux need to be resolved."
"I would like the solution to support a different type of authentication. We can't configure a secondary method for our portal."
"The licensing of this solution is a little expensive and is paid on an annual basis."
 

Pricing and Cost Advice

"It is not expensive, and it is also not cheap. iboss is priced right in the sweet spot for the number of features it offers."
"We have not priced the solution recently, but they were competitive with other vendors in the past."
"The overall pricing for iboss is very competitive and transparent."
"We had the cost of purchasing a new appliance along with the implementation and licensing costs. However, the following year, the cost of just licensing was similar to what was paid the previous year for a new appliance along with the implementation and licensing costs."
"It is probably in line with other solutions, but I do not deal with the financial side."
"It is expensive compared to one of its competitors."
"The tool's price is normal. It is not very cheap but good compared to the competitors."
"It is not the most expensive option, being more affordable than Zscaler, but it's also not the most budget-friendly choice available."
"Netskope Private Access is more inexpensive than other products."
"It is significantly cost-effective compared to its contenders."
"I believe that the price for Netskope Private Access is included in the features or functionality my company purchased from NetSkope."
"There was about 60% ROI, just in terms of savings. We had 40% to 60% reduction in monthly operational costs by using Netskope."
"When it comes to pricing, Netskope Private Access is relatively cheap compared to other solutions."
"It is not cheap, but the value of the solution is there. It's worth the investment."
"The price has been good for the ROI during these difficult times for the cruise industry. There are no hidden costs; what the product offers is what you get."
"This is not an expensive product and everything is included with one license."
"It is a little expensive. Because it is one of the best in the market, it is a little bit more expensive than other vendors."
"The solution is expensive."
"Prisma Access by Palo Alto Networks has flexible licensing models with different categories. It comes with different features which can be removed if not needed. However, its pricing is high."
"Prisma SaaS is more expensive than similar solutions but I think it's worth it."
"Based on what I have heard from others, it is a pricey solution as compared to its peers, but I am not sure. However, considering the features that it offers, it is a break-even point. You get whatever they are promising."
"Prisma is in the middle of the road. It's not the most expensive, but it's not the cheapest. There aren't any additional costs, to my knowledge. I know they have some extra modules, but we didn't use them."
report
Use our free recommendation engine to learn which ZTNA as a Service solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
11%
Manufacturing Company
9%
Computer Software Company
8%
Construction Company
7%
Financial Services Firm
12%
Manufacturing Company
10%
Computer Software Company
9%
Insurance Company
7%
Financial Services Firm
12%
Manufacturing Company
10%
Computer Software Company
8%
Construction Company
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business7
Midsize Enterprise7
Large Enterprise9
By reviewers
Company SizeCount
Small Business4
Midsize Enterprise4
Large Enterprise9
By reviewers
Company SizeCount
Small Business26
Midsize Enterprise20
Large Enterprise27
 

Questions from the Community

What needs improvement with iboss?
The problem our organization had is that iboss failed for the Mac devices. It is not able to give a successful agent ...
What is your primary use case for iboss?
We used iBoss mainly for Internet Access by having an Agent on Windows laptops Primarily because when we try to use i...
What is your experience regarding pricing and costs for iboss?
I am not involved in pricing, but as per the information I have, during that time, the Blue Coat proxies we were usin...
What needs improvement with Netskope Private Access?
There is a mixed review on the integration part of Netskope Private Access. Wherever they have out-of-the-box support...
What is your primary use case for Netskope Private Access?
For secure remote access for people who are working out of the office, remotely, or traveling, my clients mostly use ...
What advice do you have for others considering Netskope Private Access?
I work with a system integrator, and nowadays, we have all these solutions in our portfolio for our customers. At tha...
What is the better solution - Prisma Access or Zscaler Private Access?
We looked into Prisma Access before choosing Zscaler Private Access (ZPA). Palo Alto’s Prisma Access is a secure ac...
What is your experience regarding pricing and costs for Prisma Access by Palo Alto Networks?
From my experience, Palo Alto is more expensive compared to solutions like Netskope and Triscale.
What needs improvement with Prisma Access by Palo Alto Networks?
Regarding the integration part for Prisma Access by Palo Alto Networks, the integration with identity providers is pr...
 

Also Known As

iBoss Cloud Platform
No data available
Palo Alto Networks Prisma Access, Prisma Access, GlobalProtect, Palo Alto GlobalProtect Mobile Security Manager, Prisma SaaS by Palo Alto Networks, Prisma Access
 

Overview

 

Sample Customers

More than 4,000 global enterprises trust the iboss Cloud Platform to support their modern workforces, including a large number of Fortune 50 companies.
Evalueserve, Stroock, Apria, Ather Energy
Concord Hospital, State of Colorado, Essilor International, RheinLand Versicherungsgruppe, University of Westminster, Universidade Nove de Julho, SPAR Austria, CAME Group, ZipRealty, Greenhill & Co., IKT Agder, Aviva Stadium, Animal Logic, Management & Training Corporation, Brigham Young University Hawaii, School District of Chilliwack
Find out what your peers are saying about Netskope Private Access vs. Prisma Access by Palo Alto Networks and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.