Skip to content

Identity Providers

You can assign an identity provider for Zero Trust Network Access (ZTNA) to use when granting access to users.

Your ZTNA gateway authenticates users based on records held by your identity provider.


ZTNA users are prompted to sign in again after 7 days if they haven't accessed any resources through the gateway.

You can choose from the following identity providers:

  • Microsoft Entra ID: You can use Microsoft Entra ID as an identity provider and to synchronize users with Sophos Central.
  • Okta: You can only use Okta as an identity provider. You must first create and configure a new Okta app integration with the right settings for use with ZTNA.

Add identity provider

Go to ZTNA > Identity Providers

For step-by-step instructions on setting up all types of identity provider, see Set up an identity provider.