Cloud Secure Edge (CSE) Licenses

License types and license distribution to end users in Cloud Secure Edge

Updated on Jul 03, 2024
5 minutes to read
Contributors

Cloud Secure Edge License Overview
Cloud Secure Edge License Types in MySonicWall
Edition-based licensing
- License consumption on the Editions model
- What is an Active User?

Cloud Secure Edge License Overview

A license is a token that is assigned to a user in your org; a user is licensed when an admin assigns the user to a service (e.g., a Service Tunnel) and the user has authenticated into the Cloud Secure Edge (CSE) app. Depending on the service assignment, a specific license type will be assigned to the user (license types are outlined below). Admins can purchase a fixed number of licenses, known as their License Entitlement. This is a floating number of licenses available for end users to consume as they access resources or services within Cloud Secure Edge; these licenses are not time-limited.

Cloud Secure Edge License Types in MySonicWall

Licenses are purchased through MySonicWall.

Secure Private Access (SPA) Basic: VPN

Service Tunnel (VPN as a Service): available as split tunnel or full tunnel

Secure Private Access (SPA) Advanced: Zero Trust Network Access (ZTNA)

Hosted websites: provide users access to internal websites
Hosted infrastructure: provide users access to internal infrastructure services
Private resource discovery: view private resources accessed by end users via Service Tunnel
IaaS resource discovery: view infrastructure resources accessed by end users for work

Secure Internet Access (SIA) Basic: Compliance-focused Web Filtering

DNS-based compliance content filtering: block specific internet content to adhere to your org’s compliance standards
DNS-based malicious content filtering: block users from encountering internets threats

Secure Internet Access (SIA) Advanced: Security-focused Web Filtering

URL Filtering: determine threats associated with URLs and block or allow access accordingly
IP Allowlisting: provide users access to specific IP address ranges
Device Trust for SaaS: evaluate users’ device trust during SaaS sessions
Internet Resource Discovery: view which public resources end users are accessing for work

Note: Cloud Secure Edge (CSE), formerly known as Banyan Security, previously offered product editions. These editions are no longer available for purchase, but some edition models may still be in use. If you’re interested in learning about how license consumption works in the old editions model, refer to the section below.

Edition-based licensing

License consumption on the Editions model

On the Editions model, a license is consumed if a user has been active at least once over the past 90 days.

Note: Even users that have been archived or deleted are considered an Active User and will consume a license if such users have been active at all (i.e., accessed a service or Service Tunnel or checked in on a device that has an ITP policy associated with it) within the last 90 days.

What is an Active User?

An Active User is one of the following:

a user who has accessed a published service or Service Tunnel within the last 90 days;
a user (i) whose device has an Internet Threat Protection (ITP) policy assigned to it and (ii) who has checked in within the last 90 days.

Can’t find what you’re looking for?

We’re happy to help. Contact our team.