No more typing reviews! Try our Samantha, our new voice AI agent.

Netskope Private Access vs Prisma Access by Palo Alto Networks comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Aug 11, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

iboss
Sponsored
Ranking in ZTNA as a Service
7th
Average Rating
8.4
Reviews Sentiment
6.9
Number of Reviews
22
Ranking in other categories
Secure Web Gateways (SWG) (6th), Internet Security (3rd), Web Content Filtering (1st), Cloud Access Security Brokers (CASB) (6th), Secure Access Service Edge (SASE) (7th)
Netskope Private Access
Ranking in ZTNA as a Service
15th
Average Rating
8.6
Reviews Sentiment
6.8
Number of Reviews
17
Ranking in other categories
No ranking in other categories
Prisma Access by Palo Alto ...
Ranking in ZTNA as a Service
4th
Average Rating
8.2
Reviews Sentiment
6.9
Number of Reviews
65
Ranking in other categories
Secure Web Gateways (SWG) (4th), Cloud Access Security Brokers (CASB) (1st), Enterprise Infrastructure VPN (5th), Secure Access Service Edge (SASE) (1st)
 

Mindshare comparison

As of July 2026, in the ZTNA as a Service category, the mindshare of iboss is 3.7%, up from 1.9% compared to the previous year. The mindshare of Netskope Private Access is 2.6%, down from 5.3% compared to the previous year. The mindshare of Prisma Access by Palo Alto Networks is 10.1%, down from 14.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
ZTNA as a Service Mindshare Distribution
ProductMindshare (%)
Prisma Access by Palo Alto Networks10.1%
iboss3.7%
Netskope Private Access2.6%
Other83.6%
ZTNA as a Service
 

Featured Reviews

Ashok Ananthula - PeerSpot reviewer
Senior Consultant Proxy Engineering at a financial services firm with 10,001+ employees
Cloud gateway has strengthened remote web security and now needs better Mac and ISP support
The problem our organization had is that iboss failed for the Mac devices. It is not able to give a successful agent for the Mac agents. That is where in 2025, we had to migrate to the Palo Alto-based platform. If your use case is for just Windows laptops,you can consider this platform as an option One issue is the data center resiliency part. In India especially, they are not tied up with the Tier 1 ISPs like Tata or Airtel; they were having Tier 2 ISPs and encountered many issues reaching few major sites that my organization depends on, and they were having problems that they could not fix quickly. They also lack a mechanism to route that traffic within their data center; rather, they ask customers to make a pac file change to route it to Singapore explicitly. It would be better if they route from their backend , i mean even if I send it to India DC, they should be able to route it internally to make that work; however, they fail to do that and ask the customer to route it in the pac file. Another suggestion is that in China, they do not have the proper setup; they used to have numerous problems with slowness and lack of premium circuits in China as well. That leads to multiple sites working slowly with latency-related issues. So the main issue is the ISP-related problems that need to be solved.
Prathamesh Samant - PeerSpot reviewer
Presales Manager at a manufacturing company with 201-500 employees
Has ensured secure remote access through real-time device checks and policy controls
There is a mixed review on the integration part of Netskope Private Access. Wherever they have out-of-the-box support, it is quite easy to integrate. Wherever customization is needed, it depends on the openness of the application being integrated with. If the other application has an open architecture where you have easy API integrations, then it becomes easier. However, in some cases, it is a tedious task to do the integration where the application is not that open or it is not supported out-of-the-box from Netskope. They can introduce the DLP feature for Netskope Private Access. Zscaler has that DLP feature. It is in their roadmap, but currently, they don't have it. If they have data protection or data loss prevention within their NPA, that would be a significant advantage.
IgorPinter - PeerSpot reviewer
Director at PULSEC
Zero-trust access has improved remote security and now simplifies cloud-based firewall management
Regarding the integration part for Prisma Access by Palo Alto Networks, the integration with identity providers is pretty much good. It is basically firewall as a service, so it performs well. I completed the integration without any issues. What Palo Alto Networks can do better for Prisma Access by Palo Alto Networks is probably to have the point of presence available in more locations. The point of presence from the Serbia region has the nearest POP in Frankfurt, which is an issue since it is your gateway—when you start browsing the internet, you go through a commercial connection in Germany. They definitely need to spread the service in other countries.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"iboss has significantly lowered the number of security incidents. It is crazy how much it blocks and how much it is aware of the outside danger."
"I would say iboss is a very good product; its scalability is very good, and it's seamless for the user."
"Valuable features: Within the filter: Controls (Web categories, applications, and Allow/Block list) and Network (local Subnets). Within the reporter: Logs (Event Log) and Reports."
"iboss is among the few products providing inline filtering where no application is needed on the device. It operates on the network side and is not device-based. This feature was one of the main reasons why we stayed with them for so long."
"The security aspect of the solution, particularly the malware behind it, is excellent."
"The iboss solution gives me the ability to scan the traffic through all the ports, through all the 131,000 PCP and UDP ports, and with this ability, we have the granularity also for consults over social media and applications on mobile, and this is an advantage that the customers are looking for right now."
"From a corporate perspective, I understand that it's important to keep the company data safe."
"Granular setup, which was able to set different levels of filters using the OUs in the AD."
"It is a stable solution."
"In the VPN scenario, what was happening, the user would get back to the complete source. But in NPA, the application will go to the user. There is an outbound connection. There is no inbound. Storage providers are also not there. It's the best feature because it is the replacement of the VPN."
"With private access or next-gen VPN, they are able to keep you secure, but they are invisible in terms of how they do it. Anybody working from home and trying to bring up VPN quickly can pretty much get VPN up and running in a matter of minutes because this doesn't require any VPN technology on-prem. All the VPN technologies that you're using to access applications on-premise can be eliminated by using their software. If you're accessing Microsoft 365 or salesforce.com, you can go straight out from your home office or home internet to that application rather than having to come through a VPN. It still has all the policies enforced, and it mitigates any business risks in terms of how that user is accessing that application and what they're doing inside of it. VPN piece is really critical, especially at this time of Covid, and your latency also goes down. Your latency gets better by using the platform because they're intercepting your traffic, routing it through their local data center, and then sending it to whichever SaaS service or whatever you're going to. It does it better, faster, and quicker with all your governance policies enforced, rather than you having to go through your data center. So, all the traffic gets hauls there, and then that traffic has got to route somewhere else, and then it has got to go up to the cloud. Your latency actually goes down. They can guarantee 15 milliseconds or less pretty much across anywhere on the planet for about 95% or 90% of it."
"It is a stable solution...It is a scalable solution."
"Netskope Private Access covers a wide range of use cases with solutions for client-server and server-to-client connectivity patterns."
"The initial setup of Netskope Private Access is pretty simple and straightforward."
"In the firewall, we don't have a user-based policies list, and we can't create them. Netskope helps us to create user-based policies. For example, if there are specific teams like HR or more than nine teams, and we want logs from access over particular URLs, and we don't want to allow that specific URL for certain users, we can create these policies in Netskope. It's handy, easy to use for new users, and has a cool GUI interface. We can create multiple policies, and as for the proxy, it's a leading solution."
"The product's scalability is good."
"Overall, it's a great solution that works quite well."
"It has predefined or preconfigured rules, which are getting periodically updated. They are providing continuous improvements and periodically updating all search queries that they are looking for. That is one thing that helps us to stay vigilant and focused. If we query our AWS account for any breaches or vulnerabilities with any of the cloud tests, and it alerts us based on these predefined rules. It also provides an option to configure our own rules, and based on these rules, it can query the cloud trail logs, pull the information, and trigger alerts in real-time. I haven't explored this feature much because there are multiple accounts, and we don't have enough time to explore this feature. It also provides multiple integrations. When vulnerabilities or breaches are happening, you should be aware of them immediately. It provides integration with tools such as Slack, PagerDuty so that you can get alerted as soon as the high severity stuff comes up. For example, you have a security group that has allowed public traffic on port 22. As TechOps, you should be aware of this immediately. You cannot scan each machine or look into all security groups to identify it. So, Prisma helps us and alerts us when this kind of high-priority stuff comes up. It has different statistics, analytics, and graphs for data. The description of alerts is also pretty good. They describe what are the possible causes for this and what are the solutions. From Prisma Cloud, you can directly go to the AWS account. When you click on an alert, a resource, or a resource ID, it takes you to the AWS console where you need to log in. If you are already logged in, it will take you to that instance directly, and you can fix the issue there. I have found this feature very useful."
"The performance is good."
"Prisma Access protects all app traffic, so that users can gain access to all apps and that's very important because we need to be able to access everything. It also allows us to access non-web apps; anything internal that we need access to, we can access."
"The always-on feature is fantastic for the users. They don't have to think about it. When they go to a coffee shop to do work, there's no need to remember to toggle the VPN on. We'll protect them. URL filtering is the same at home as it is in the office."
"All of these come into play and give us peace of mind that this platform is best-in-class in terms of security features and tool integration."
"The most valuable features of the solution are in the areas of the secure remote access it provides while also being user-friendly."
"The stacked policies, event policies, and routing policies are easy to understand for someone with general knowledge."
 

Cons

"It is stable, but due to growth, it can sometimes be less stable than wanted."
"I'd like to see them accelerate development on the security side, particularly around data loss prevention."
"SSL decryption: We had issues with learners using apps instead of using web browsers. This type of encryption is tough for any appliance in a BYOD environment."
"Fold that in with the risk intelligence they're getting from all of the different subscriptions they are a part of. Now, these security companies subscribe to things like emerging threats, databases, etc. You can fold all this intelligence to decide what's happening on an endpoint. I would love to see them start moving into that space. That would compete directly with Microsoft. Maybe that's why they haven't. Having that ability native within the solution would be great. The other area in which I would love to see improvement is more detailed descriptions of why they block websites."
"iboss can be improved because the integration could be better; you need to import all the sites that you access today, and there are a few problems whenever you import thousands of websites, making the integration process messy for the users."
"Sometimes the agent stops working in iboss, and we have to reinstall the agent."
"I am currently doing a PoC of the zero trust aspect of it. Compared to other similar solutions, it is hard to get around each feature. It takes a while to get used to it."
"The reporting feature needs improvement. It doesn't give you the expected results. It is quite difficult to get the specific reports needed, and it is not as intuitive as the rest of the platform."
"The product is not easy to use."
"Netskope Private Access allows mapping only one DNS server. If a user uses a secondary DNS on-premises, Netskope fails to disconnect them. This is an issue that needs to be addressed."
"The ability to provide more security around agentless access has room for improvement."
"We faced certain issues with China users as it can be rather challenging for them due to the presence of Great Firewall."
"Netskope Private Access only supports TCP and UDP ports and does not support ICMP or ping."
"The main challenge we are facing across various Trust Network Access (TNA) technologies, including Netskope, is their inability to support broadcast applications or those relying on broadcasting protocols."
"In some cases, it is a tedious task to do the integration where the application is not that open or it is not supported out-of-the-box from Netskope."
"The major problem that we are facing is if we deploy Netskope on the server level or if we get a new server in the EMEA factor, it will affect all the machines. Recently, this has caused us to fail some reviews."
"There can be some latency issues with the solution that should be improved."
"It's not very easy to use. Sometimes it's buggy and there are problems when doing updates. The user interface is okay, but some configuration items are difficult. I would like it to be less buggy and easier to configure, to better streamline the user experience."
"If you compare Prisma SaaS against other products, such as Cloud Log, it's a little bit tricky to understand, but it offers different functionality that other products don't have. From a user usability point of view, you need some training for this product, as an admin, you need a couple of demos."
"The Prisma Access by Palo Alto Networks interface is more difficult than FortiGate."
"There is a lack of integration with third-party solutions like CrowdStrike or SentinelOne in Prisma Access by Palo Alto Networks. Although they have a tight ecosystem with their products, opening up for integration with other solutions would be beneficial."
"Technical support could be a lot better."
"I haven't seen any SD-WAN configuration capability. If Prisma Access would support SD-WAN, that would help... SD-WAN devices should be able to reach Prisma Access, and Palo Alto should support different, vendor-specific devices, not just Palo Alto devices, for SD-WAN configuration."
"The Cloud Managed Prisma Access needs some more enhancement."
 

Pricing and Cost Advice

"It is not expensive, and it is also not cheap. iboss is priced right in the sweet spot for the number of features it offers."
"It is expensive compared to one of its competitors."
"The overall pricing for iboss is very competitive and transparent."
"We have not priced the solution recently, but they were competitive with other vendors in the past."
"It is probably in line with other solutions, but I do not deal with the financial side."
"We had the cost of purchasing a new appliance along with the implementation and licensing costs. However, the following year, the cost of just licensing was similar to what was paid the previous year for a new appliance along with the implementation and licensing costs."
"I believe that the price for Netskope Private Access is included in the features or functionality my company purchased from NetSkope."
"The tool's price is normal. It is not very cheap but good compared to the competitors."
"Netskope Private Access is more inexpensive than other products."
"It is not cheap, but the value of the solution is there. It's worth the investment."
"It is not the most expensive option, being more affordable than Zscaler, but it's also not the most budget-friendly choice available."
"The pricing of the solution is cheap."
"When it comes to pricing, Netskope Private Access is relatively cheap compared to other solutions."
"It is significantly cost-effective compared to its contenders."
"We have to pay additional costs for maintenance and support services."
"Actually the solution is very expensive. I don't know the particulars since the purchasing team dealt with it."
"It is a little expensive. Because it is one of the best in the market, it is a little bit more expensive than other vendors."
"They price their products using credit modules."
"Prisma Access by Palo Alto Networks is an expensive solution, especially when compared to other solutions like Cisco. There are no additional charges apart from the standard licensing costs attached to the solution."
"The price has been good for the ROI during these difficult times for the cruise industry. There are no hidden costs; what the product offers is what you get."
"Prisma Access by Palo Alto Networks has flexible licensing models with different categories. It comes with different features which can be removed if not needed. However, its pricing is high."
"Based on what I have heard from others, it is a pricey solution as compared to its peers, but I am not sure. However, considering the features that it offers, it is a break-even point. You get whatever they are promising."
report
Use our free recommendation engine to learn which ZTNA as a Service solutions are best for your needs.
904,054 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
11%
Manufacturing Company
10%
Computer Software Company
8%
Construction Company
7%
Financial Services Firm
12%
Manufacturing Company
10%
Computer Software Company
9%
Insurance Company
7%
Financial Services Firm
12%
Manufacturing Company
10%
Computer Software Company
8%
Construction Company
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business7
Midsize Enterprise7
Large Enterprise9
By reviewers
Company SizeCount
Small Business4
Midsize Enterprise4
Large Enterprise9
By reviewers
Company SizeCount
Small Business26
Midsize Enterprise20
Large Enterprise27
 

Questions from the Community

What needs improvement with iboss?
The problem our organization had is that iboss failed for the Mac devices. It is not able to give a successful agent ...
What is your primary use case for iboss?
We used iBoss mainly for Internet Access by having an Agent on Windows laptops Primarily because when we try to use i...
What is your experience regarding pricing and costs for iboss?
I am not involved in pricing, but as per the information I have, during that time, the Blue Coat proxies we were usin...
What needs improvement with Netskope Private Access?
There is a mixed review on the integration part of Netskope Private Access. Wherever they have out-of-the-box support...
What is your primary use case for Netskope Private Access?
For secure remote access for people who are working out of the office, remotely, or traveling, my clients mostly use ...
What advice do you have for others considering Netskope Private Access?
I work with a system integrator, and nowadays, we have all these solutions in our portfolio for our customers. At tha...
What is the better solution - Prisma Access or Zscaler Private Access?
We looked into Prisma Access before choosing Zscaler Private Access (ZPA). Palo Alto’s Prisma Access is a secure ac...
What is your experience regarding pricing and costs for Prisma Access by Palo Alto Networks?
From my experience, Palo Alto is more expensive compared to solutions like Netskope and Triscale.
What needs improvement with Prisma Access by Palo Alto Networks?
Regarding the integration part for Prisma Access by Palo Alto Networks, the integration with identity providers is pr...
 

Also Known As

iBoss Cloud Platform
No data available
Palo Alto Networks Prisma Access, Prisma Access, GlobalProtect, Palo Alto GlobalProtect Mobile Security Manager, Prisma SaaS by Palo Alto Networks, Prisma Access
 

Overview

 

Sample Customers

More than 4,000 global enterprises trust the iboss Cloud Platform to support their modern workforces, including a large number of Fortune 50 companies.
Evalueserve, Stroock, Apria, Ather Energy
Concord Hospital, State of Colorado, Essilor International, RheinLand Versicherungsgruppe, University of Westminster, Universidade Nove de Julho, SPAR Austria, CAME Group, ZipRealty, Greenhill & Co., IKT Agder, Aviva Stadium, Animal Logic, Management & Training Corporation, Brigham Young University Hawaii, School District of Chilliwack
Find out what your peers are saying about Netskope Private Access vs. Prisma Access by Palo Alto Networks and other solutions. Updated: June 2026.
904,054 professionals have used our research since 2012.