Today marks a significant milestone in Zenarmor’s evolution as a comprehensive Secure Access Service Edge (SASE) solution. Released on March 3rd, 2026, Zenarmor 2.4 introduces groundbreaking capabilities that address the most pressing challenges facing modern distributed enterprises: securing mobile workforces, simplifying deployment across diverse environments, and providing partners with unprecedented flexibility in licensing and client management.
This release represents a fundamental expansion of Zenarmor’s “Plug.SASE.Everywhere” philosophy, extending comprehensive internet security and Zero Trust Network Access (ZTNA) capabilities to iOS and Android devices while introducing Docker container deployment options that dramatically reduce time-to-security for organizations of all sizes.
Introduction: Securing the Truly Distributed Enterprise
The modern enterprise perimeter has dissolved. Your workforce operates from coffee shops, home offices, airports, and client sites, often switching between networks multiple times per day. Mobile devices have become the primary computing platform for many roles, yet they remain one of the most challenging endpoints to secure effectively.
Traditional cloud-only SASE solutions have attempted to address this challenge, but they often introduce latency, complexity, and dependency on vendor-controlled infrastructure that can create single points of failure.
Zenarmor 2.4 takes a fundamentally different approach, extending our hybrid architecture to mobile platforms while maintaining the performance, flexibility, and control that distinguish our ONE.APP. SASE.™ approach.
What’s New: Seven Game-Changing Capabilities
1. Comprehensive Internet Security for iOS and Android Devices While Roaming
The Challenge:
Mobile workers accessing corporate resources and internet applications from untrusted networks face a perfect storm of security risks: man-in-the-middle attacks, malicious Wi-Fi hotspots, shadow IT applications, and zero visibility for security teams.
Traditional VPNs provide tunnel security but lack application-layer inspection and control. Cloud-only SASE solutions force all traffic through distant cloud POPs, introducing latency that degrades user experience and productivity.
The Zenarmor Solution:
Zenarmor gateways now function as both internet exit gateways and comprehensive inspection points for roaming iOS and Android devices. This means your mobile workforce receives the full suite of Zenarmor’s security capabilities regardless of their location or network:
- Application-aware security policies that follow users across networks
- Advanced threat protection, including malware detection, phishing prevention, and command-and-control blocking
- Content filtering and web categorization to prevent access to risky or inappropriate sites
- Complete visibility into application usage, bandwidth consumption, and security events
- Intelligent routing to the nearest Zenarmor gateway for optimal performance
Why This Matters:
Unlike cloud-only SASE providers that lock you into their infrastructure, Zenarmor allows you to deploy gateways where they make sense for your business — whether that’s in your own data centers, at branch locations, or in cloud regions of your choosing. Your mobile users connect to your infrastructure, maintaining the performance and control advantages that define Zenarmor’s approach.
For a sales executive traveling internationally, this means consistent security policies and optimal performance — whether they’re in a hotel in Singapore or a conference center in Frankfurt — all without the “VPN tax” of routing traffic halfway around the world to a vendor’s cloud POP or central VPN concentrator.
2. Docker Container Deployment for Zenarmor Gateways
The Challenge:
Speed to security is critical. Organizations need to deploy protection quickly across diverse environments — development clusters, edge computing locations, temporary sites, and cloud-native infrastructures. Traditional appliance-based or VM-only deployment models create friction, requiring procurement cycles, hardware provisioning, or heavyweight virtualization infrastructure.
The Zenarmor Solution:
Zenarmor gateways can now be deployed as Docker containers, enabling instant security deployment in containerized environments. This capability provides:
- Rapid deployment measured in minutes rather than days or weeks
- Infrastructure flexibility to run Zenarmor wherever Docker is supported
- Resource efficiency with containerized workloads that consume only the necessary resources
- DevOps integration enabling security to be deployed through the same CI/CD pipelines as applications
Why This Matters:
This addresses a critical gap in traditional SASE offerings. Cloud-only solutions can’t provide security for on-premises containerized workloads without forcing traffic to exit your network and traverse the internet to their cloud infrastructure.
Zenarmor’s Docker deployment option lets you secure Kubernetes clusters, edge computing nodes, and development environments with the same comprehensive SASE capabilities you deploy elsewhere — while keeping sensitive traffic within your control.
Consider a retail organization with edge computing infrastructure at store locations running inventory management and point-of-sale systems in containers. Zenarmor can now provide comprehensive security and secure connectivity to corporate resources without requiring separate physical or virtual appliances at each location.
3. Pool Licensing for Partners
The Challenge:
Managed Security Service Providers (MSSPs), Value-Added Resellers (VARs), and system integrators need licensing flexibility to efficiently serve multiple clients with varying and changing needs. Traditional per-organization licensing creates administrative overhead and can leave partners with stranded capacity or force clients to over-purchase to accommodate growth.
The Zenarmor Solution:
Partners can now purchase Zenarmor licenses in pools, providing unprecedented flexibility to:
- Allocate licenses dynamically across multiple client organizations
- Right-size deployments without over-purchasing for individual clients
- Respond quickly to client growth by reallocating pool resources
- Optimize license utilization across their entire client base
- Simplify procurement with consolidated purchasing
Why This Matters:
This licensing model aligns with how modern MSSPs and service providers operate. Rather than managing dozens or hundreds of individual license purchases and renewals, partners can maintain a pool that serves their entire practice, allocating capacity where it’s needed most. This reduces administrative burden, improves cash flow management, and enables partners to be more competitive in their pricing and proposals.
4. Partner License Assignment to Clients
The Challenge:
Partners need to maintain clear boundaries between their management role and their clients’ operational independence. Clients want visibility into their subscriptions and the ability to manage their own environments within parameters set by their service provider.
The Zenarmor Solution:
Building on pool licensing, partners can now assign licenses directly to client organizations, enabling clients to:
- View their subscription details independently through their own Zenconsole access
- Manage their deployments within the scope of their assigned licenses
- Track usage and capacity for their organization
- Maintain clear separation between their environment and other clients
Why This Matters:
This creates a true multi-tenant architecture that respects both partner control and client autonomy. Partners maintain oversight and can reallocate licenses as needed, while clients gain transparency and self-service capabilities. This reduces support burden on partners and improves client satisfaction by providing direct visibility into the services they’re paying for.
5. Mandatory Organization-Wide Reauthentication
The Challenge:
Security posture degrades over time. Credentials may be compromised, employment status may change, access requirements may evolve, and compliance frameworks may increasingly require periodic verification of user identity. Yet forcing reauthentication can disrupt operations if not managed carefully.
The Zenarmor Solution:
Administrators can now initiate mandatory reauthentication across their entire organization periodically. This capability:
- Validates user identity at administrator-defined intervals
- Detects compromised credentials before they can be exploited
- Enforces policy updates by requiring users to reconnect under current policies
- Supports compliance requirements for periodic identity verification
- Provides audit trails of authentication events organization-wide
Why This Matters:
This addresses a critical gap in Zero Trust implementation. True Zero Trust requires continuous verification, not just authentication at initial connection. By enabling administrators to force periodic reauthentication, Zenarmor ensures that access is based on current identity verification rather than potentially stale sessions. This is particularly important for organizations in regulated industries or those handling sensitive data where compliance frameworks mandate periodic identity verification.
6. Multiple Domain Servers and Search Domains for Secure Private Networks
The Challenge:
Enterprise networks are complex. Organizations frequently operate multiple Active Directory domains, maintain separate DNS infrastructure for different business units or geographic regions, and need to support varied search domain configurations. Single-domain limitations force workarounds that compromise functionality or security.
The Zenarmor Solution:
Zenarmor now supports multiple domain server instances and search domains, enabling organizations to:
- Integrate with complex directory structures, including multiple AD forests and domains
- Support geographically distributed DNS infrastructure with region-specific domain servers
- Maintain separate domains for different business units while providing unified security
- Configure appropriate search domains for different user populations or network segments
Why This Matters:
This reflects the reality of enterprise IT environments — particularly for organizations that have grown through acquisition or operate across multiple regions. Rather than forcing organizations to flatten their directory structure or implement complex workarounds, Zenarmor adapts to existing infrastructure. This reduces deployment complexity and ensures that secure private network access works seamlessly with existing identity and DNS infrastructure.
7. Automatic Endpoint Agent Updates
The Challenge:
Endpoint agent management is a persistent challenge for IT and security teams. Manual update processes are time-consuming, error-prone, and often result in version sprawl across the organization. Outdated agents may lack critical security updates or compatibility with new features, creating security gaps and support burdens.
The Zenarmor Solution:
Administrators can now automatically update all Zenarmor endpoint agents through Zenconsole, ensuring:
- Consistent version deployment across all endpoints
- Automatic security updates without manual intervention
- Reduced IT burden by eliminating manual update processes
- Immediate feature availability as new capabilities are released
- Centralized control over update timing and deployment
Why This Matters:
This transforms endpoint management from a reactive, labor-intensive process to a proactive, automated function. Security teams can ensure that every endpoint runs the latest version with current threat definitions and security patches, eliminating the window of vulnerability that exists when updates are deployed manually. For distributed organizations with remote workers, this is particularly critical — IT teams no longer need to rely on users to update their agents or schedule maintenance windows to push updates.
Improvements Worth Noting
While the focus of this release is on new capabilities, several improvements enhance the overall Zenarmor experience:
- Punycode decoding in Reports and Live Sessions now properly displays internationalized domain names and email addresses, improving visibility for global organizations.
- Enhanced Global Deployment dashboard provides clearer status information for offline endpoints.
- Extended licensing options in the one-time installation script simplify gateway deployment when multiple license types are available.
- Enhanced sign-up security through mandatory OTP verification when linking SSO accounts.
- Improved scheduled reporting now supports sending reports to all users, not just administrators.
Conclusion: Security That Moves at the Speed of Business
Zenarmor 2.4 represents a significant leap forward in our mission to provide comprehensive, flexible, and high-performance security for distributed enterprises. By extending our SASE capabilities to mobile platforms, simplifying deployment through containerization, and enhancing partner and licensing flexibility, we’re addressing the real-world challenges that organizations face today.
The modern workforce is mobile, distributed, and increasingly reliant on cloud applications and SaaS platforms. Security solutions must adapt to this reality without introducing the latency, complexity, and vendor lock-in that characterize traditional cloud-only SASE approaches.
Zenarmor 2.4 delivers on this promise — providing enterprise-grade security that follows your users wherever they work, deploys wherever you need it, and scales according to your business requirements.
Get Started Today
Zenarmor 2.4 is now available to all users. Existing customers can access these new capabilities immediately through Zenconsole. For partners interested in pool licensing and client management capabilities, contact your Zenarmor representative to discuss how these new features can enhance your service delivery and grow your practice.
Full release note available at: Release Notes
