Endpoint/Device Security, MSSP

Portnox–SentinelOne Partnership Brings Autonomous Access Control to Enterprises and MSSPs

Cybersecurity and Computer-Related Cyber Technology

Portnox has expanded its zero trust access control platform through a new integration with SentinelOne’s autonomous endpoint security. The partnership brings together network enforcement and endpoint intelligence, giving organizations the ability to make access decisions at machine speed and based on real-time threat signals.

Closing Security Gaps with Out-of-the-Box Integration

Enterprises often struggle to balance speed with security, especially when deploying new controls across a distributed environment.

Denny LeCompte, CEO of Portnox, told MSSP Alert that the SentinelOne integration was designed to eliminate those challenges from the start.

“Our SentinelOne integration is an out-of-the-box solution that requires no custom coding or complex setup, allowing for security posture improvements in minutes. It helps close critical security gaps by preventing compromised, unmanaged, or dormant endpoint devices from accessing the network or applications, a core principle of zero trust. This allows security teams to quickly and easily enhance their zero trust posture. It combines two best-of-breed platforms to close the loop on endpoint security and access control," said LeCompte.

The approach is aimed squarely at problems security teams encounter every day. “It eliminates endpoint blind spots by ensuring that every device—including unmanaged, personal (BYOD), or dormant devices—is assessed for risk before being granted network or application access. It closes the time gap between threat detection and response by automatically revoking a device’s network and application access the moment SentinelOne flags it as a threat. And it prevents devices with active infections or those that haven’t been updated from connecting, effectively reducing the overall attack surface,” LeCompte emphasized.

By pairing Portnox Cloud’s granular access enforcement with SentinelOne’s behavioral AI engine, enterprises can cut off risky connections the moment they emerge - not hours or days later.

What Automation Looks Like in Practice

Most organizations hear a lot about automation, but the actual impact can feel vague until it’s seen in action. LeCompte stressed that the real power of the integration is its ability to act decisively in the background while remaining largely invisible to end users. "The automation is largely invisible, working behind the scenes to protect the network and applications,” he said.

He described how this plays out in practice. "If an employee’s laptop gets infected with ransomware, SentinelOne detects the malicious activity. Within seconds, Portnox automatically updates the device’s risk score and moves it to a quarantine VLAN, or removes it from the network entirely. Portnox ZTNA can also revoke access to SaaS and behind-the-firewall applications.”

The same applies to unmanaged or dormant devices that may slip past traditional controls. "When a contractor’s personal laptop, which lacks the SentinelOne agent, tries to connect, Portnox instantly identifies it as unmanaged and denies access to sensitive systems until security measures are in place. If an old conference room PC hasn’t been used in months and is flagged as dormant, Portnox automatically restricts its access until it’s updated and rescanned, preventing it from becoming a backdoor.”

For security teams, these outcomes happen without manual intervention, reducing time to response and allowing staff to focus on higher-value tasks.

Scaling Zero Trust for MSSPs

The integration was also built with service providers in mind. MSSPs often face the challenge of managing zero trust across multiple tenants, each with its own requirements.

LeCompte said this was a core design principle. “For MSSPs, this joint solution is designed to work efficiently in a multi-tenant environment, which brings significant advantages for scaling zero trust services.”

He pointed to three areas where MSSPs gain the most value: centralized visibility, flexible scaling, and simplified operations. “Portnox and SentinelOne’s cloud-native platforms offer a centralized, single-pane-of-glass view for managing multiple clients, each with its own separate tenant. The cloud-native design allows MSSPs to easily and rapidly scale zero trust services across a diverse client base without needing to deploy or maintain on-premises hardware. And the out-of-the-box integration and automated risk-based policies mean that MSSPs can deploy and manage zero trust policies more efficiently, serving more customers with their existing team.”

For MSSPs, this means they can extend consistent protections across customers while reducing operational burden, an advantage in a competitive market where efficiency and scale determine profitability. By combining automated endpoint detection with dynamic access control, organizations and MSSPs alike can enforce zero trust in real time and reduce exposure at every connection point.

Suparna Chawla Bhasin

Suparna is the Senior Managing Editor for CyberRisk Alliance’s Channel Brands, including MSSP Alert and ChannelE2E. She manages content development, sharpens editorial workflows, and ensures storytelling is tightly aligned with audience needs. With a background in technology, media, and education, she combines strategic insight with creative execution.

You can skip this ad in 5 seconds