Sold by: AppGate Federal
Deployed on AWS
AppGate ZTNA, an industry-leading Zero Trust Network Access (ZTNA) solution, puts your people first with simple, fast, secure connections to multi-cloud, on-prem, or legacy applications - from anywhere. AppGate ZTNA is a cloud-native, unified, API-enabled solution which delivers valuable security, efficiency and user experience benefits. Each user has a one-to-one encrypted network segment to each location where resources have been explicitly granted. Developers enjoy concurrent and automated access to multiple, disparate environments without waiting for manual access approvals. Admins can easily ensure that users have access to necessary resources, regardless of physical location or virtual segmentation.
4.8
Overview
AppGate ZTNA, an industry-leading Zero Trust Network Access (ZTNA) solution, puts your people first with simple, fast, secure connections to multi-cloud, on-prem, or legacy applications - from anywhere. AppGate ZTNA is a cloud-native, unified, API-enabled solution which delivers valuable security, efficiency and user experience benefits. Each user has a one-to-one encrypted network segment to each location where resources have been explicitly granted. Developers enjoy concurrent and automated access to multiple, disparate environments without waiting for manual access approvals. Admins can easily ensure that users have access to necessary resources, regardless of physical location or virtual segmentation.
This paid version includes a 25-user license and should be deployed as a single standalone ZTNA appliance. Hourly and Annual subscriptions of this product are available in the AWS Marketplace. Annual subscriptions provide a 9 percent savings compared to running the same product hourly for extended periods. Any customer usage above the number of annual subscriptions purchased is billed at the hourly rate. Contact support@appgate.com with any questions.
Highlights
- Enable all users: Consistent secure multi-tunnel access for anyone working from anywhere, whether in the office or remote
- Secure all devices: Reliable, easy secure access from managed or unmanaged devices of all makes and models
- Protect all workloads: Unified, multi-tunnel secure access for multi-cloud, on-premises and even your tried-and-true core legacy apps
Details
Sold by
Delivery method
Delivery option
Standalone Appgate SDP Deployment
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
Ubuntu 20.04
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time. Alternatively, you can pay upfront for a contract, which typically covers your anticipated usage for the contract duration. Any usage beyond contract will incur additional usage-based costs.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Cost/hour |
|---|---|
c5.2xlarge Recommended | $0.50 |
r6i.4xlarge | $0.50 |
m4.2xlarge | $0.50 |
r4.large | $0.50 |
m5.2xlarge | $0.50 |
m5n.4xlarge | $0.50 |
r4.xlarge | $0.50 |
r6i.2xlarge | $0.50 |
r6i.xlarge | $0.50 |
t3.large | $0.50 |
Vendor refund policy
We do not currently support refunds at this time
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Additional details
Usage instructions
Resources
Vendor resources
Support
Vendor support
Please see the AppGate Support page for information on the details and level of support offered https://www.appgate.com/support This product will be supported through AppGate Federal's standard support terms found at
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By AppGate Federal
By Barracuda Networks
By Juniper Networks
Top
25
In Continuous Integration and Continuous Delivery
Top
10
In Device Connectivity
Top
10
In Device Connectivity, Network Infrastructure, Security
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Zero Trust Network Access Architecture
Cloud-native, unified, API-enabled solution implementing zero trust network access principles with one-to-one encrypted network segments for each user to explicitly granted resource locations
Multi-Tunnel Encrypted Connectivity
Delivers consistent secure multi-tunnel access across multi-cloud, on-premises, and legacy applications from any location or device
Device-Agnostic Access Control
Supports reliable secure access from managed and unmanaged devices across all makes and models without device-specific restrictions
Automated Access Management
Enables concurrent and automated access to multiple disparate environments with explicit resource grant mechanisms, eliminating manual access approval workflows
Cross-Environment Resource Access
Provides unified secure access to resources regardless of physical location or virtual segmentation across diverse infrastructure environments
Software-Defined WAN (SD-WAN) Engine
Built-in SD-WAN engine combining multiple remote access and WAN optimization technologies for secure access to cloud resources across office and mobile users.
Intrusion Prevention System (IPS)
Integrated IPS engine providing real-time network protection against a broad range of network threats.
Application-Based Traffic Control
Enterprise-grade firewalling with application-aware segmentation and traffic control based on application identity, ports, and user identity.
Network Access Control
Network access control enforcement capabilities for enforcing security policies across dispersed network environments.
VPN and Secure Connectivity
VPN technologies enabling secure remote access, secure office-to-cloud connectivity, and cloud network segmentation with support for branch office direct internet schemes.
Service-Centric Routing Architecture
Session-based, service-centric control plane with session-aware data plane enabling SD-WAN, dynamic load balancing, multi-path resilience, and WAN optimization capabilities.
Zero-Trust Security Framework
Zero-trust security implementation with hypersegmentation, session directionality, encryption, and session-stateful firewall functionality for policy enforcement.
Centralized Management and Orchestration
Centralized management platform providing zero-touch provisioning, orchestration, control, visibility, and management across distributed routers.
Tunnel-Less Architecture
Tunnel-less network architecture design reducing complexity and delivering bandwidth savings compared to traditional VPN gateway approaches.
Multi-Environment Deployment Support
Single management interface for heterogeneous deployments spanning branch offices, public cloud, private cloud, and hybrid cloud environments with global policy application.
Standard contract
No
No
No
Customer reviews
Brandon G.
Smart, Secure Remote Access with AppGate SDP
Reviewed on May 22, 2026
Review provided by G2
What do you like best about the product?
I find AppGate a smart solution for remote access and micro-segmentation that assimilates with your centralized user security structure very well. I love the inherent DOS security features of the system such as no open scannable ports on their appliances. I find the site, collective and user management approach of the system very practical and effective. Since changing our remote access to AppGate literally all of our network engineers have complimented on the intuitiveness of the client and resiliency of the connections. SPA key coupled with MFA and with continuous IdP re-authentication represents a strong security posture imo. AppGate SDP is a very flexible system and has a lot of cool features from a security engineering perspective. The AppGate team has been very responsive and helpful and have continuously proven their proficiency of ZTNA and network security. Also, I find the per user pricing structure of the product a value. I highly recommend the product.
What do you dislike about the product?
As with all new products that take a different approach, there will be a learning curve. AppGate is no different. The product heavily relies on how well thought through your Identity Provider and DNS systems are and requires the customer to be prepared to implement such a system. Ultimately, it is for the better.
What problems is the product solving and how is that benefiting you?
Remote access, micro segmentation and ZTNA preparedness are just a few. Also, use cases for integrating access across IPv4/IPv6 dual-stacked networks and bridging those with legacy systems.
Rajeev_Ranjan
Zero-trust access has improved our secure VPN connectivity and protected internet usage
Reviewed on May 20, 2026
Review provided by PeerSpot
What is our primary use case?
My main use case for Appgate SDP is for security purposes. We are trying to use it to connect with our VPNs and the network so that we can improve our organization's security.
A specific example of how we use Appgate SDP for security and with our VPNs is that Danfoss security team has implemented a no-trust policy, requiring everybody to install Appgate SDP with a default account. Whenever we start our system, it will automatically connect to the different VPNs through which our network is going. If it is disabled, we are unable to access the internet, as all our network goes through a firewall. If Appgate SDP is not connected to all of the VPNs, then we are not able to browse the internet.
What is most valuable?
In my experience, the best features Appgate SDP offers are reliable connectivity across different environments and strong policy-based access.
When I mention strong policy-based features, I mean that if I want to secure all the systems in my organization, I can apply a particular policy through which all the network has to go, making it easy to implement security compliance throughout the organization.
Appgate SDP has positively impacted my organization, as we are using it to securely access the internet after the cyber attack. After the implementation of Appgate SDP, I did not hear about any security incidents.
What needs improvement?
If I could change or improve anything about Appgate SDP, it would be to enhance the user experience by improving the UI so that it is more explanatory. Currently, the UI feels as though it is doing something behind the scenes, and at first sight, nobody can understand what this application is for. I think that is the main thing regarding needed improvements.
For how long have I used the solution?
I have been using Appgate SDP for around two years.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup cost, and licensing is that this whole thing is managed by the security team, and there are different teams involved, so I do not have knowledge about cost. I think it is important for security because if a security incident happens, you lose more money than you save.
What other advice do I have?
I do not have anything else to add about my main use case or how it is set up for my team. I do not have anything else about the features I find valuable.
My advice for others looking into using Appgate SDP is to use it, as it is a good application.
T Nagesh K.
Appgate SDP Delivers True Zero Trust with Fast, Direct Access
Reviewed on Apr 23, 2026
Review provided by G2
What do you like best about the product?
I like Appgate SDP best because it enforces true Zero Trust by making applications invisible and granting fast, direct access only to explicitly authorized users—without exposing the network
What do you dislike about the product?
I don’t have any specific dislikes at this time; it has effectively met our security and access needs.
What problems is the product solving and how is that benefiting you?
Appgate SDP addresses the issue of overly broad, VPN‑based network access by enforcing true Zero Trust access only to authorized applications. For us, this translates into a reduced attack surface, stronger security, and seamless access for users.
Defense & Space
Excellent support and response.
Reviewed on Mar 31, 2026
Review provided by G2
What do you like best about the product?
Quick reply for technical support/fault resolution.
What do you dislike about the product?
N/A. Have not found any issues with thisproduct or the support team.
What problems is the product solving and how is that benefiting you?
RHEL support.
David R.
Centralized Control, Simple Yet Powerful
Reviewed on Mar 05, 2026
Review provided by G2
What do you like best about the product?
I find Appgate SDP to be very powerful and flexible in terms of configurability. The configuration data model is simple to understand, which makes it much easier to handle. I appreciate how easy it is to provision new Appgate Gateways and other Appliances to the Appgate collective. The networking requirements for communication between these Appliances are straightforward to implement, partly because Appgate implements SPA and simplifies firewall rules. I also like that every resource in Appgate is autonomous, allowing for easy creation and editing, which provides a clean separation of concerns and contributes to the reliability of the entire system.
What do you dislike about the product?
I do not have much complaints about Appgate SDP, but I could mention a few things. When signing in to the AppGate Client, since we have a large number of entitlements and AppGate Gateways, it can take a little while to establish all connections. If signing back in is required and this happens during the workday, there can be a short period of time when protected services are not accessible. Also, we have to maintain our own separate service to query group memberships of users in order to configure Access Policies based on groups. It would be nice if this was integrated into AppGate, especially for ubiquitous IDPs like Google.
What problems is the product solving and how is that benefiting you?
Appgate SDP secures access to internal services and SaaS applications, centralizes access policy configurations, and simplifies secure VPN-like infrastructure setup. It's powerful yet user-friendly, making provisioning gateways easy and offering reliable, autonomous resource management.