Portnox expands zero trust access to console tools

Portnox has expanded its Zero Trust Network Access (ZTNA) product to cover console-based enterprise applications, adding passwordless access for protocols commonly used in administrative workflows.

The update extends credential-free access beyond web and on-premises applications to include Remote Desktop Protocol (RDP), Secure Shell (SSH), Virtual Network Computing (VNC) and Telnet. Portnox says organisations can remove passwords and stored credentials from administrative access for these connections.

Portnox positioned the move as a response to phishing and credential misuse, which it says account for 80% of data breaches. Security teams and vendors often cite stolen credentials and social engineering as persistent weaknesses in enterprise access controls, especially where remote access is widely used.

Console access

Console-based access remains common for server administration, network device configuration and maintenance tasks. Many organisations still rely on VPNs and directory credentials for this work, alongside password vaults for privileged accounts.

Portnox contrasts its approach with these established tools, arguing that VPNs typically provide broad network access once a user connects, while vaults focus on storing and rotating passwords rather than removing them from workflows.

The latest release adds certificate-based authentication for RDP, SSH, VNC and Telnet, according to the product description. Portnox says the service also applies continuous device posture monitoring and risk-adaptive policies, and can remediate endpoints that fail compliance checks before granting access.

Portnox also emphasised its deployment model, saying customers can roll out the update without firewall changes, VPN client software or agent installations.

Identity controls

Portnox says its access controls integrate with enterprise identity providers including Okta, Azure AD and Google Workspace. The service uses identity verification alongside device posture checks, network and location context and risk scoring for each access request.

It also supports automatic access revocation when device posture or risk conditions change, reflecting a broader shift in zero trust products towards continuous verification rather than a one-time decision at login.

For end users, Portnox says the product provides a unified view of authorised resources across applications and infrastructure. It describes a single sign-on experience for web, SaaS, on-premises and console-based applications, with role-based and location-based access controls and real-time policy enforcement.

The update also includes what Portnox calls Secure Access Portal enhancements. The new secure enterprise access features and portal changes are available immediately as part of the latest release.

Market shift

Vendors across the security market have targeted VPN replacement as organisations rethink remote access. The shift has accelerated as hybrid working persists and firms move more workloads into public cloud environments.

Portnox cited a figure that 93% of CISOs plan to replace VPNs by 2027. Such plans typically combine multiple technologies, including identity and access management, endpoint security, device compliance checks and application-level access controls.

Portnox also referenced a Forrester Total Economic Impact study of organisations using Portnox Cloud, saying it found a 287% ROI, a 75% reduction in breach risk and 90% faster deployment of new sites, with payback in under six months.

Denny LeCompte, Portnox chief executive officer, framed the expansion as a continuation of the company's zero trust strategy.

"When we launched Portnox ZTNA in July 2025, we proved that you don't have to sacrifice speed or simplicity to achieve zero trust," LeCompte said. "Our expansion into console-based applications shows what happens when you substantially reduce the attack surface. Portnox customers are removing passwords and replacing VPNs while improving the user experience across their application suite. That's the promise of true zero trust: better security, increased productivity, and ease of use."

Portnox says the ZTNA expansion builds on its network access control and broader access-control foundation. It describes the result as coverage across cloud, on-premises and console-based environments, with access decisions based on identity, device posture and contextual signals.