The AppGate ZTNA system allows the access control process flow to be scriptable. This allows the system to inter-operate with countless external systems and network environments. The system can learn who needs what access rights, which Actions are allowed when, and then the system finds available live hosts.
The diagram below illustrates every point in the access control model where it is possible to introduce an element of automation and orchestration.
(1).png?sv=2022-11-02&spr=https&st=2026-04-17T00%3A05%3A52Z&se=2026-04-17T00%3A16%3A52Z&sr=c&sp=r&sig=rXC4%2BWUiAst1rE1G%2BTc32KvrjEJhllokTivFDkIv9Ec%3D)
Scripts can be used throughout AppGate ZTNA and perform complex logic, string manipulations, and calculations. An important part of this capability is to allow limited https calls to be made to external systems. For these calls, there is a Secrets store built into AppGate ZTNA so that any credentials required to authenticate to these external systems are not exposed in the scripts or related logs.
It is also possible for scripts run by external systems to make calls to AppGate ZTNA to modify the system configuration. To achieve this, AppGate ZTNA provides a complete set of API functions. These can create entitlements, policies, and conditions, and also deploy appliances. This makes it very easy to have external systems update the configuration settings within the system. For more information refer to REST API.
For more information, see the Use of Scripts section. Our Professional Services team is also available to provide advice at Help & Support