Netskope Private Access vs Prisma Access by Palo Alto Networks comparison

Netskope Private Access vs. Prisma Access by Palo Alto Networks

Download the complete report

Helped 864,155 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Netskope Private Access

Ranking in ZTNA as a Service

6th

Average Rating

8.6

Reviews Sentiment

7.8

Number of Reviews

Ranking in other categories

No ranking in other categories

Prisma Access by Palo Alto ...

Ranking in ZTNA as a Service

2nd

Average Rating

8.4

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Secure Web Gateways (SWG) (4th), Cloud Access Security Brokers (CASB) (1st), Enterprise Infrastructure VPN (5th), Secure Access Service Edge (SASE) (3rd)

Mindshare comparison

As of August 2025, in the ZTNA as a Service category, the mindshare of Netskope Private Access is 5.0%, up from 3.7% compared to the previous year. The mindshare of Prisma Access by Palo Alto Networks is 14.4%, down from 15.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.

ZTNA as a Service

Featured Reviews

Christian Dagal

Security Architect Manager at Aboitiz Equity Ventures, Inc.

Provides network visibility, infrastructure protection and advanced security protections, especially the DLP (Data Loss Protection)

Room for improvement is more on the policies offered for DLP. Netskope detects certain data or contents, but there are some limitations on how we can customize those policies for DLP. In the next release, I hope we can see more use cases for mobile devices, not just for laptops or servers but also for key features that will be available on mobile devices or smartphones.

Read full review

Ángel García Favieres

CyberSecurity Specialist at Aiuken Cybersecurity

Experience seamless networking with reliable support and enhanced security

It is all about the interface. The Prisma Access by Palo Alto Networks interface is more difficult than FortiGate. The area where we encountered most problems was the permissions system. When the client wanted to give me access, they did not want to give me super admin access because they wanted me to have access only for specific tasks. We had significant trouble with configuring those permissions and making them work, as there are many options on the permissions panel. The permissions tab should be more generalized. There are so many options that you always have to open a case for technical support. The technical support team resolved these issues effectively, but this remains an area for improvement.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Netskope enables users to securely access private applications remotely without a VPN."

"It is a stable solution."

"There are several valuable features, like advanced security protections, especially the DLP (Data Loss Protection), and there's also browser and web filtering, or content filtering for our users to protect them when accessing certain links or websites, ensuring their security and permission."

"In the VPN scenario, what was happening, the user would get back to the complete source. But in NPA, the application will go to the user. There is an outbound connection. There is no inbound. Storage providers are also not there. It's the best feature because it is the replacement of the VPN."

"The initial setup of Netskope Private Access is pretty simple and straightforward."

"The most valuable feature is being able to see who is accessing the application, whether it is a managed device or a bring-your-own-device published by Netskope."

"We can block and alert the ports and allow the public traffic software in our environment."

"With private access or next-gen VPN, they are able to keep you secure, but they are invisible in terms of how they do it. Anybody working from home and trying to bring up VPN quickly can pretty much get VPN up and running in a matter of minutes because this doesn't require any VPN technology on-prem. All the VPN technologies that you're using to access applications on-premise can be eliminated by using their software. If you're accessing Microsoft 365 or salesforce.com, you can go straight out from your home office or home internet to that application rather than having to come through a VPN. It still has all the policies enforced, and it mitigates any business risks in terms of how that user is accessing that application and what they're doing inside of it. VPN piece is really critical, especially at this time of Covid, and your latency also goes down. Your latency gets better by using the platform because they're intercepting your traffic, routing it through their local data center, and then sending it to whichever SaaS service or whatever you're going to. It does it better, faster, and quicker with all your governance policies enforced, rather than you having to go through your data center. So, all the traffic gets hauls there, and then that traffic has got to route somewhere else, and then it has got to go up to the cloud. Your latency actually goes down. They can guarantee 15 milliseconds or less pretty much across anywhere on the planet for about 95% or 90% of it."

More Netskope Private Access pros

"A feature I've found very helpful is run time security because most of the products on the market will look at security during the build time, and they don't really look at what happens once you're going into production."

"The solution improved the consistency of our security controls and the BCP. There has been a 20 percent reduction in TCO. Prisma Access also enabled us to deliver better applications by centralizing security management."

"I like it because it's very easy to use. You install the client and you have to know your gateway, but that's something we give to our users. Beyond that, it takes about three seconds to train them on how to use it. And it just works well. That's great for us because it means less administrative time."

"The most valuable features of the solution stem from the fact that it offers stability and scalability while being a very secure product."

"We're now able to go after contracts that require a Zero Trust solution and Prisma's other technology solutions."

"The most valuable feature of Prisma Cloud-native, in my opinion, is that it assists in identifying, analyzing, and remediating vulnerabilities."

"Its frontend is user-friendly. It is easy to use for us."

"It has predefined or preconfigured rules, which are getting periodically updated. They are providing continuous improvements and periodically updating all search queries that they are looking for. That is one thing that helps us to stay vigilant and focused. If we query our AWS account for any breaches or vulnerabilities with any of the cloud tests, and it alerts us based on these predefined rules. It also provides an option to configure our own rules, and based on these rules, it can query the cloud trail logs, pull the information, and trigger alerts in real-time. I haven't explored this feature much because there are multiple accounts, and we don't have enough time to explore this feature. It also provides multiple integrations. When vulnerabilities or breaches are happening, you should be aware of them immediately. It provides integration with tools such as Slack, PagerDuty so that you can get alerted as soon as the high severity stuff comes up. For example, you have a security group that has allowed public traffic on port 22. As TechOps, you should be aware of this immediately. You cannot scan each machine or look into all security groups to identify it. So, Prisma helps us and alerts us when this kind of high-priority stuff comes up. It has different statistics, analytics, and graphs for data. The description of alerts is also pretty good. They describe what are the possible causes for this and what are the solutions. From Prisma Cloud, you can directly go to the AWS account. When you click on an alert, a resource, or a resource ID, it takes you to the AWS console where you need to log in. If you are already logged in, it will take you to that instance directly, and you can fix the issue there. I have found this feature very useful."

More Prisma Access by Palo Alto Networks pros

Cons

"Netskope Private Access only supports TCP and UDP ports and does not support ICMP or ping."

"Netskope needs to provide some kind of data protection strategy as well because, currently, if you connect through private access, we don't have any data protection policies or implementation."

"There could be an ability to access one server from another when we have console access to the first server."

"The ability to provide more security around agentless access has room for improvement."

"I would like to see them go down the path of including SD-WAN. Currently, they don't do SD-WAN. If they could somehow natively do that inside of the platform, that would be amazing. I don't know if they're going to do it, but it would be amazing if they do."

"The product is not easy to use."

"Netskope Private Access allows mapping only one DNS server. If a user uses a secondary DNS on-premises, Netskope fails to disconnect them. This is an issue that needs to be addressed."

"Netskope Private Access could improve by enhancing visibility of user performance and application performance. It should also integrate wider DLP and inspection engines on private access traffic."

More Netskope Private Access cons

"One area for improvement is for them to stay on top of keeping their CVEs on their platform up to date."

"It's not really Prisma's fault, but when you try to create exceptions you don't really have those abilities. You cannot say, on the management platform, "Hey, for these users I want to create these exceptions." That is one thing that I have gotten some complaints about, and we have faced some challenges there."

"They can add some new characteristics. For example, when an incident triggers, they can automatically send a template for a particular match that is related to the policy. We don't have that right now. It is something to improve. There could be more automation for certain actions. For example, for a particular group, it can send an administrator alert to their manager. It was one of the concerns of our customers."

"They automatically update and they should give us time to fully understand what they're updating so that we can make sure it doesn't impact production."

"Sometimes, you have these notifications sent out about changes in App-IDs, modifications in App-IDs, or even the introduction of entirely new App-IDs to replace. Sometimes, the recommendations are followed, but even then, when the package is installed on the firewall, it gets messed up. I remember a particular one was with Tableau, and suddenly, people weren't able to use Tableau, which is an analytics tool for business."

"One thing that would help is if we could get a guide. With Cisco, for example, you can just type the problem regarding your Cisco product and you will easily get your solution. In Palo Alto, however, it's not easy to find the solutions."

"The user interface could be better. They need to work a little bit on the console. It is similar to their firewalls but not exactly. They need to clean it up a bit."

"When it comes to the VPN, it uses the global protect VPN functionality to connect remotely, but it has a feature limitation for assigning multiple IP sub-links to different user groups. It would be much better if we are able to assign the current IP blocks for the sub-links based on the user groups."

More Prisma Access by Palo Alto Networks cons

Pricing and Cost Advice

"The pricing of the solution is cheap."

"The tool's price is normal. It is not very cheap but good compared to the competitors."

"When it comes to pricing, Netskope Private Access is relatively cheap compared to other solutions."

"It is not cheap, but the value of the solution is there. It's worth the investment."

"It is significantly cost-effective compared to its contenders."

"It is not the most expensive option, being more affordable than Zscaler, but it's also not the most budget-friendly choice available."

"Netskope Private Access is more inexpensive than other products."

"I believe that the price for Netskope Private Access is included in the features or functionality my company purchased from NetSkope."

More Netskope Private Access pricing and cost advice

"The solution is expensive."

"This is not an expensive product and everything is included with one license."

"I would advise choosing your options according to your company's needs. Just go for what you want and do not pay for anything extra in terms of licensing. You need to determine how much bandwidth is required in your company network, and according to that, you should pay for the license. The mobile user license is based on the number of users who are going to use the VPN solution. You need to determine how many mobile users you are going to have in your network, and you should pay according to that. There are no other costs in addition to licensing, but if you go for the consultant services of Palo Alto networks to deliver the solution for you, then you need to pay something extra. That is not a part of licensing."

"We have to pay additional costs for maintenance and support services."

"Prisma Access by Palo Alto Networks is an expensive solution, especially when compared to other solutions like Cisco. There are no additional charges apart from the standard licensing costs attached to the solution."

"Prisma Access is one of the best compared to other products on the market. The cost is favorable, and Palo Alto provides a simple architecture, so I recommend the solution to anyone using a different product. There are no hidden costs besides the license; what you see is what you get."

"The licensing cost is about 18,000 euros."

"In terms of pricing, considering that it is a two or three years old solution, they should apply big discounts for the next two or three years. This approach will be better for them to capture the market."

More Prisma Access by Palo Alto Networks pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which ZTNA as a Service solutions are best for your needs.

See recommendations

864,155 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

13%

Financial Services Firm

12%

Manufacturing Company

11%

Insurance Company

Computer Software Company

13%

Manufacturing Company

12%

Financial Services Firm

12%

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Netskope Private Access?

Even without extensive training, if you're a proficient IT professional, you can easily configure it.

What needs improvement with Netskope Private Access?

Netskope Private Access could improve by enhancing visibility of user performance and application performance. It should also integrate wider DLP ( /categories/data-loss-prevention-dlp ) and inspec...

What is your primary use case for Netskope Private Access?

Our primary use case for Netskope Private Access ( /products/netskope-private-access-reviews ) was for internal access to NAS ( /categories/nas ) drives, internal webpages, and internal resources. ...

What is the better solution - Prisma Access or Zscaler Private Access?

We looked into Prisma Access before choosing Zscaler Private Access (ZPA). Palo Alto’s Prisma Access is a secure access service edge (SASE) designed to deliver network security in a cloud-deliver...

What do you like most about Prisma Access by Palo Alto Networks?

The most valuable features of the solution are in the areas of the secure remote access it provides while also being user-friendly.

What is your experience regarding pricing and costs for Prisma Access by Palo Alto Networks?

From my experience, Palo Alto is more expensive compared to solutions like Netskope and Triscale.

Zscaler Zero Trust Exchange Platform vs Netskope Private Access

Comparisons

Compared 40% of the time

Cloudflare One vs Netskope Private Access

Compared 9% of the time

Cato SASE Cloud Platform vs Netskope Private Access

Compared 7% of the time

Appgate SDP vs Netskope Private Access

Compared 7% of the time

Jamf Connect vs Netskope Private Access

Compared 5% of the time

More Netskope Private Access Competitors

Cisco Umbrella vs Prisma Access by Palo Alto Networks

Compared 11% of the time

Netskope vs Prisma Access by Palo Alto Networks

Compared 10% of the time

Zscaler Internet Access vs Prisma Access by Palo Alto Networks

Compared 8% of the time

FortiSASE vs Prisma Access by Palo Alto Networks

Compared 7% of the time

Citrix Gateway vs Prisma Access by Palo Alto Networks

Compared 2% of the time

More Prisma Access by Palo Alto Networks Competitors

Product Reports

Netskope Private Access

Download Netskope Private Access product report

Prisma Access by Palo Alto Networks

Download Prisma Access by Palo Alto Networks product report

Prisma Access by Palo Alto Networks report

Also Known As

No data available

Palo Alto Networks Prisma Access, Prisma Access, GlobalProtect, Palo Alto GlobalProtect Mobile Security Manager, Prisma SaaS by Palo Alto Networks, Prisma Access

Overview

Netskope Private Access is an integral component of the Netskope Security Cloud platform that provides zero-trust secure access to enterprise applications and data in hybrid IT (public cloud and data center) environments. It offers comprehensive policy management, compliance assessment, and supports any application, protocol, and device to reduce risk and simplify security operations.

Netskope

Prisma Access by Palo Alto Networks provides consistent security for all users and applications across your remote networks. Prisma Access grants users safe access to the cloud and data center applications and the internet as well. In addition, the solution combines all of your security and networking capabilities into a single cloud-delivered platform, enabling flexible hybrid workforces.

Prisma Access can be managed two ways:

Cloud Managed
Panorama Managed

Prisma Access delivers both networking and security services, including:

SD-WAN
VPN
Zero Trust network access (ZTNA)
Quality of service (QoS)
Clean Pipe
Firewall as a service (FWaaS)
DNS Security
Threat Prevention
Cloud secure web gateway (SWG)
Data loss prevention (DLP)
Cloud access security broker (CASB)

Prisma Access by Palo Alto Networks Features

Prisma Access by Palo Alto Networks has many valuable key features including: App-ID, User-ID, Device-ID, SSL Decryption, Dynamic User Group (DUG) Monitoring, AI/ML-Based Detection, IoT Security, Reporting, URL Filtering, Enterprise Data Loss Prevention (DLP), Digital Experience Monitoring (DEM)*, Logging, Policy Automation, Intrusion Prevention System (IPS), and many more.

Prisma Access by Palo Alto Networks Benefits

Some of the benefits of using Prisma Access by Palo Alto Networks include:

Security: Prisma Access gives you consistent security to protect against cyberattacks, with enforcement of policy at every location. By implementing Prisma Access, you also gain protection that works to prevent known and unknown malware, exploits, credential theft, command and control, and many other attack vectors across all ports and protocols.
Global connectivity: Prisma Access provides global coverage through use of its connectivity layer.
Scalability: With Prisma Access, scaling is automatically managed and is scalable, flexible, and agile.
Instant deployment: Deployment is fast, eliminating wasted time that may otherwise be associated with setting up a solution, operating it, or shipping hardware in order to get started.

Reviews from Real Users

Below are some reviews and helpful feedback written by Microsoft Azure Synapse Analytics

users who are currently using the solution.

PeerSpot user Partha D., Global Network Tech Lead at a computer software company, speaks about his experience using the product, saying, "It protects all app traffic so that users can gain access to all apps. Unlike other solutions that only work from ports 80 and 443, which are predominantly for web traffic, Prisma Access covers all protocols and works on all traffic patterns... The most sophisticated attacks can arise from sources that are not behind 80/443."

Tejas J., a Sr. Cloud Security Architect at a computer software company, mentions that "it is geographically dispersed, and it sits on top of Google and AWS platforms. Therefore, you don't face the standard issues, such as latency or bandwidth issues, that you usually face in the case of on-prem data centers.”

Another PeerSpot reviewer, Max I., Associate Director at Cognizant, comments that "Security is absolutely spot-on, really top-notch. It's the result of all the components that come together, such as the HIP [Host Information Profile] and components like Forcepoint, providing end-user content inspection, and antivirus. It incorporates DLP features and that's fantastic because Prisma Access makes sure that all of the essential prerequisites are in place before a user can log in or can be tunneled into."

Palo Alto Networks

Sample Customers

Evalueserve, Stroock, Apria, Ather Energy

Concord Hospital, State of Colorado, Essilor International, RheinLand Versicherungsgruppe, University of Westminster, Universidade Nove de Julho, SPAR Austria, CAME Group, ZipRealty, Greenhill & Co., IKT Agder, Aviva Stadium, Animal Logic, Management & Training Corporation, Brigham Young University Hawaii, School District of Chilliwack

Netskope Private Access vs. Prisma Access by Palo Alto Networks