Portnox
Network access control software
Network security policy management (NSPM) software
Zero trust networking software
IT risk management software
Network security software
Risk assessment software
Zero trust architecture software
- Features
- Ease of use
- Ease of management
- Quality of support
- Affordability
- Market presence
Take the quiz to check if Portnox and its alternatives fit your requirements.
$0.99 per device per year
Free Trial
Free version unavailable
Small
Medium
Large
- Construction
- Real estate and property management
- Retail and wholesale
What is Portnox
Portnox is a cloud-delivered network access control (NAC) platform used to control and monitor device access to wired, wireless, and VPN networks. It is typically used by IT and security teams to enforce authentication, device posture checks, and role-based access policies for managed and unmanaged endpoints. The product emphasizes deployment without on-prem NAC appliances and integrates with identity providers, certificate services, and network infrastructure to automate access decisions. It also provides visibility and reporting to support compliance and risk-focused workflows.
Cloud-native NAC deployment model
Portnox is delivered as a SaaS platform, which can reduce the need for on-prem NAC hardware and associated maintenance. This model can simplify rollout across multiple sites compared with appliance-centric approaches. It also supports remote administration and centralized policy management for distributed environments.
Broad endpoint onboarding options
The platform supports common NAC onboarding patterns such as 802.1X authentication, certificate-based access, and guest/BYOD workflows. These capabilities help organizations handle a mix of corporate devices, contractors, and IoT/OT-like endpoints. Policy can be applied based on identity, device attributes, and network context to segment access.
Integrations for identity and networks
Portnox integrates with enterprise identity providers and directory services to map users and groups to network access policies. It also works with network infrastructure (switches, wireless controllers/APs, and RADIUS-based components) to enforce decisions at the edge. These integrations enable automated responses such as VLAN assignment, role changes, or quarantine actions.
Depends on network infrastructure readiness
Effective NAC enforcement typically requires consistent support for 802.1X, RADIUS, and dynamic authorization across switching and wireless infrastructure. Environments with legacy gear or inconsistent configurations may need remediation work before policies can be enforced reliably. This can extend implementation timelines and increase operational coordination with network teams.
Policy design can be complex
Designing role-based access, segmentation, and exception handling for diverse device types often requires careful planning and iterative tuning. Organizations may need to invest time in profiling, certificate lifecycle processes, and troubleshooting authentication failures. Smaller teams can find ongoing policy maintenance demanding as environments change.
Limited fit for deep ZTNA use cases
While NAC supports zero-trust principles at the network access layer, it may not replace application-level access controls used in software-defined perimeter or full ZTNA products. Use cases requiring per-application connectivity, user-to-app microtunnels, or advanced session controls may require additional tooling. Buyers should validate how far Portnox’s controls extend beyond network admission and segmentation.
Plan & Pricing
| Plan / Product | Price | Key features & notes |
|---|---|---|
| Network Authentication (RADIUS) | Contact sales / Not listed on pricing page | Cloud RADIUS (802.1X, RadSec, IoT profiling). "Start Free Trial" available. Source: vendor pricing page. cite |
| Network Access Control (NAC) | Contact sales / Not listed on pricing page | Full NAC (continuous risk assessment, agent & agentless posture, IoT protection). "Request a Demo" shown; pricing not listed. cite |
| Zero Trust Network Access (ZTNA) | Contact sales / Not listed on pricing page | Cloud-native ZTNA (agentless, passwordless). "Start Free Trial" and 30-day free capabilities mentioned. cite |
| TACACS+ (Network Device Administration) | $200 USD / Admin / Month (listed on pricing page); press release also states "$2 per device" for TACACS+ as-a-Service (see notes) | Cloud TACACS+/AAA. Pricing page lists $200 USD per Admin per month; a Portnox press release states TACACS+-as-a-Service "starts at $2 per device" — vendor pages contain both figures (potentially different pricing models/packaging). Contact sales for clarification. cite |
| Unified Access Control (UAC / Full Platform) | Contact sales / Not listed on pricing page | Unified suite (RADIUS + NAC + ZTNA + TACACS+). "Request a Demo" for pricing. cite |
| Certificate authority services (add-on) | $1 / device (listed on pricing page) | CA/enrollment services shown as $1 per device on the pricing matrix. cite |
| Extended device data retention (add-on) | $0.99 / device / year (add 30 days; each additional 30 days also $0.99/device/year) | Explicit add-on pricing for extended retention shown on pricing page. cite |
| Add-on packs (guest packages, SMS packages, etc.) | Prices not listed (placeholders shown) | Pricing page lists add-on pack types but does not show concrete prices; contact sales. cite |
Seller details
Portnox Ltd.
Austin, TX, USA
2007
Private
https://www.portnox.com/
https://x.com/portnox
https://www.linkedin.com/company/portnox/
