Ensure that you have an Orchestration Workspace before continuing. You can learn how to create a Zscaler in Managing POPs and how to switch between modes in Orchestration Workspace.
Zscaler Connection Fields
To connect Zscaler with PlainID, enter the following Connection Fields. These credentials enable authentication and communication between Zscaler and the Policy Orchestration Point (POP).
Required Credential Fields
| Connection Field | Description |
|---|---|
| Authentication Method | Use client_credentials to authenticate using the Zscaler API. |
| API Key | The API key provided by Zscaler for your account. |
| API Key Secret | The API secret corresponding to the API key. |
| Customer ID | The Customer ID associated with your Zscaler tenant. |
| Customer Based URI | The Zscaler API URI specific to your tenant (e.g., https://config.zpabeta.net). |
This initial discovery discovers all of the access policies managed within ZPA, as well as the Application segments and the Application segment groups. The access policies will appear in the Authorization Workspace as Platform Policies.
When you click on a Policy, as with Policies created within the Platform, you can view the Policy in structured Rego (click Code), or as a visual representation of the Policy (click Map).
In addition, the Identity Workspace and the Authorization Workspaces are populated with the mapped objects and Policies discovered in ZPA.