https://live.paloaltonetworks.com/t5/next-generation-casb-discussions/why-we-need-web-security-policy-while-even-we-having-same/m-p/571393#M45 <P>Hi Team,</P> <P>Kindly clarify me why we need&nbsp;<STRONG>web-security policy</STRONG> while even we having same feature in <STRONG>normal prisma access policy</STRONG>?</P> <P>&nbsp;</P> <P>Scenario,</P> <P>SaaS security discovered several apps, we can create a policy and later import to websecurity by policy recommendation.</P> <P>But the question here is even the same application can be used in normal security policy in prisma access</P> <P>&nbsp;</P> <P>Note:</P> <P>Referred multiple paloalto document but only configuration is mentioned couldn't get,</P> <P>1.why it is required?&nbsp;</P> <P>2.Whether it is mandatory requirement for SaaS security ?</P> Tue, 02 Jan 2024 07:26:29 GMT AkilanR 2024-01-02T07:26:29Z https://live.paloaltonetworks.com/t5/next-generation-casb-discussions/why-we-need-web-security-policy-while-even-we-having-same/m-p/571393#M45 <P>Hi Team,</P> <P>Kindly clarify me why we need&nbsp;<STRONG>web-security policy</STRONG> while even we having same feature in <STRONG>normal prisma access policy</STRONG>?</P> <P>&nbsp;</P> <P>Scenario,</P> <P>SaaS security discovered several apps, we can create a policy and later import to websecurity by policy recommendation.</P> <P>But the question here is even the same application can be used in normal security policy in prisma access</P> <P>&nbsp;</P> <P>Note:</P> <P>Referred multiple paloalto document but only configuration is mentioned couldn't get,</P> <P>1.why it is required?&nbsp;</P> <P>2.Whether it is mandatory requirement for SaaS security ?</P> Tue, 02 Jan 2024 07:26:29 GMT https://live.paloaltonetworks.com/t5/next-generation-casb-discussions/why-we-need-web-security-policy-while-even-we-having-same/m-p/571393#M45 AkilanR 2024-01-02T07:26:29Z https://live.paloaltonetworks.com/t5/next-generation-casb-discussions/why-we-need-web-security-policy-while-even-we-having-same/m-p/571494#M46 <P>you simply have the option of choosing the policy recommendation, or building your own policy</P> Tue, 02 Jan 2024 23:52:35 GMT https://live.paloaltonetworks.com/t5/next-generation-casb-discussions/why-we-need-web-security-policy-while-even-we-having-same/m-p/571494#M46 reaper 2024-01-02T23:52:35Z https://live.paloaltonetworks.com/t5/next-generation-casb-discussions/why-we-need-web-security-policy-while-even-we-having-same/m-p/596942#M49 <P>I think that web-security once enabled is evaluated first (not 100 percent on that) but is also a role that can be give to web security admins so they can alter the web security policy but not other policies.</P> Thu, 05 Sep 2024 08:37:22 GMT https://live.paloaltonetworks.com/t5/next-generation-casb-discussions/why-we-need-web-security-policy-while-even-we-having-same/m-p/596942#M49 laurence64 2024-09-05T08:37:22Z https://live.paloaltonetworks.com/t5/next-generation-casb-discussions/why-we-need-web-security-policy-while-even-we-having-same/m-p/1086801#M131 <P>SaaS security gives you access to&nbsp;<EM>App</EM><SPAN>-</SPAN><EM>ID</EM><SPAN>&nbsp;Cloud Engine (ACE)&nbsp; that has more SaaS app-id than the normal NGFW without SaaS security enabled.</SPAN></P> <P>&nbsp;</P> <P><SPAN><A href="https://docs.paloaltonetworks.com/pan-os/11-1/pan-os-admin/app-id/cloud-based-app-id-service" target="_blank">App-ID Cloud Engine</A></SPAN></P> Fri, 17 Jan 2025 08:39:56 GMT https://live.paloaltonetworks.com/t5/next-generation-casb-discussions/why-we-need-web-security-policy-while-even-we-having-same/m-p/1086801#M131 nikoolayy1 2025-01-17T08:39:56Z