Zenarmor 2.6 ships with six new capabilities built for teams whose security operations are scaling up: a full administrator audit trail, SIEM/SOAR streaming, an organization-based RESTful API, instance tagging, policy backup and restore, and guided onboarding.

As deployments grow, the questions change. It's no longer just "can we block this threat." It becomes "who changed this policy and when," "can our analysts see Zenarmor data in the tools they already use," and "can we automate this instead of clicking through it." Version 2.6 answers those questions directly, with a common thread of visibility and operational control.

What's New

Organization Admin Governance and Audit Trail

Most relevant to: mid-market IT/SecOps teams in regulated verticals, and MSPs/MSSPs running multi-admin operations. As more administrators touch a platform, accountability gets harder, and in regulated environments like healthcare, financial services, and legal that gap becomes a compliance problem. Zenarmor 2.6 introduces a comprehensive audit trail in Zenconsole. Every action, including policy updates, configuration changes, and the addition or removal of instances, is now logged with a name and timestamp, turning "we think it was configured this way" into documented fact and shortening investigations when something goes wrong. For partners with multiple technicians touching client environments, it also answers the "who changed this on which tenant" question that gets harder as the book of business grows.

External SIEM and SOAR Support

Most relevant to: mature mid-market SecOps teams and MSSPs with an established analytics stack. Security data is only useful where analysts actually work. Many teams have already invested in their own SIEM or SOAR and want Zenarmor data flowing alongside everything else. Zenarmor 2.6 streams session details directly to Elasticsearch and OpenSearch while keeping built-in cloud reporting, so teams can build dashboards, run deeper analysis, trigger automated playbooks, and correlate Zenarmor activity with the rest of their telemetry, inside the stack they already trained on.

Organization-Based RESTful API

Most relevant to: MSPs, MSSPs, and ISPs provisioning at scale, plus infrastructure-as-code shops. Manual configuration doesn't scale. Zenarmor 2.6 introduces a RESTful API for Zenconsole, letting administrators create gateways and retrieve organization details programmatically, see full docs at Zenarmor API. Security can now be wired into infrastructure-as-code workflows and onboarding scripts, reducing manual effort and removing a class of configuration mistakes. For partners onboarding new clients and service providers standing up gateways across many sites, it means growing your footprint at the pace of the business rather than the pace of clicking.

Tag Support for Zenarmor Instances

Most relevant to: MSPs, MSSPs, and ISPs managing instances across many tenants and sites. A handful of gateways is easy to manage by name; hundreds are not. Zenarmor 2.6 adds system-defined and custom tags on gateways and endpoints. Administrators can label instances by region, business unit, function, or environment, then use those tags to organize device groups and dynamically provision resources into Zero-Trust networks, so membership follows logical rules instead of manual assignments.

Backup and Restore for Internet Security Policies

Most relevant to: MSPs standardizing baselines across clients, lean mid-market teams without spare hands to rebuild config, and regulated organizations that need to evidence policy state. Security policies are living configurations, and without a way to capture a known-good state, a misstep means rebuilding by hand. Zenarmor 2.6 lets administrators back up and restore internet security policies directly in Zenconsole. Export selected policies to a file or upload a saved configuration to apply multiple policies at once, making it easy to standardize across environments or roll back to a baseline. For compliance, a saved policy set is also a point-in-time record of how controls were configured, the kind of evidence auditors look for and the baseline you can prove you restored to after any change.

Onboarding Widget for New Users

Most relevant to: new mid-market admins and MSPs bringing on new clients. A feature-rich platform can be hard for first-timers to navigate. Zenarmor 2.6 introduces an onboarding widget that offers guided direction through key tasks, from setting up Zero-Trust networks to configuring policies, so new users always know what to do next and reach value faster. For partners, a smoother first experience means quicker time to value and less support overhead with every new client.

Improvements Worth Noting

Zenarmor 2.6 also includes a set of improvements that sharpen visibility and smooth daily operations: faster central reporting on cloud-based BigQuery; SSO awareness without TLS inspection (no internal CA certificate required on client devices); QUIC connections reliably blocked with an ICMP unreachable response on UDP port 443; a mobile-friendly subscription and pricing page; destination IP included in Threat and Activity Alert emails; destination domains in alert CSV attachments rendered as unclickable links; a direct link from alerts to related Live Sessions; fewer false positives as dead sites move from Advanced Security to the Web category; and Zero-Trust network status shown per gateway on the Gateway Dashboard.

A bug fix also resolves an SSO session display issue where a roaming user could incorrectly appear offline when working from an office that enforced SSO authentication.

Closing Thoughts

Zenarmor 2.6 is a release for teams whose security operations are growing up. The audit trail answers who did what and when. SIEM and SOAR streaming puts Zenarmor data inside the tools analysts already use. The RESTful API automates what you used to do by hand. Tagging, policy backup and restore, and guided onboarding each remove friction from running security at scale. This is what the Plug.SASE.Everywhere approach looks like as it matures: not only security that deploys anywhere, but security you can see clearly, govern accountably, and operate efficiently at any size.

Get Started Today

Zenarmor 2.6 is available now. Existing customers can access these capabilities immediately through Zenconsole, and developers can start building against the new API at Zenarmor API. For the full release notes, visit Release Notes.