What is Netskope Remote Browser Isolation

• Netskope Remote Browser Isolation is offered as an add-on to Netskope Secure Web Gateway. Contact your sales representative for more information about obtaining licensing to enable Netskope Remote Browser Isolation in your environment.
• You must be an existing customer of Netskope Secure Web Gateway.
• The Netskope client must be installed on either a supported client, or another Netskope supported steering method must be configured to drive the web browser traffic to the Netskope security platform.

• Targeted - Pairing with Netskope Secure Web Gateway allows customers to protect against uncategorized and risky websites. When an end user browses to a targeted site, they are automatically sent to a disposable remote browser. Because of this disposable remote browser, no browser code is run on their machine.
• Email - Enables administrators to render all embedded URLs in email messages as "read-only" to prevent phishing-based attacks.
• Document - All documents that are downloaded from the web browser are rendered on a remote browser as a static PDF.
• Application Access Control - Enables untrusted users and devices to view or use pixel-rendered applications or data without granting them the ability to alter those assets.

Pixel rendering is supported. With pixel rendering, all website content is run in the isolation environment and a stream of pixels is sent to the end user’s browser. This ensures that no remote code is run on the end user’s computer and the sites they go to are sealed within the RBI bubble.

Policies are defined using a set of variables. These variables define the criteria that are used for isolating users from potentially harmful sites. For more information about creating a real-time protection policy for Netskope Remote Browser Isolation, reference How to Configure a Netskope Remote Browser Isolation Protection Policy.

The web categories available for Remote Browser Isolation differ slightly from the web categories that are used for a Netskope Secure Web Gateway policy. For a full list of categories and their descriptions, reference What Categories are Available for Netskope Remote Browser Isolation.

Isolation events are logged in the Skope IT area of the Netskope cloud console. From the Netskope console home page, click Skope IT, and then Page Events. Events created by isolation have the alert action of isolate associated with them.