This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Azure AD Group Based Scanning

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Azure AD Group Based Scanning

jdelio
L7 Applicator
‎12-19-2018 01:43 PM

Aperture-R40-big.png

Palo Alto Networks Live Community dives into the new features of  Aperture R40, Azure AD group-based scanning. Read about how group-based scanning affects user groups, improves scanning and enhances the Aperture R40 experience.

 

 

NOTE: Aperture has changed to Prisma SaaS.

 

The latest R40 release of Aperture adds Group-Based Scanning for Azure AD (Active Directory).

 

Connecting your Azure Active Directory service to Aperture allows you to retrieve information on user groups and group membership from your centralized repository of users and groups on your network. The Aperture service allows you to selectively include or exclude user groups' information when scanning assets in the supported SaaS application.


If you need to exclude a user group due to differences in data privacy rules or have private assets that should be excluded from scanning, connecting a directory service and enabling selective scanning will address this need.

 

When you connect your directory service to Aperture, you provide the identifiers and keys, authorizing the service to establish a secure connection to the directory to retrieve your user and group information. Aperture refreshes every 24 hours, but if there are changes to users and groups that you’d like to retrieve before the automatic refresh, selecting Refresh updates your user and group information.

 

One of the screens you will see when configuring Azure Active Directory.One of the screens you will see when configuring Azure Active Directory.

You can add a subset of groups to scan or exclude from scanning.You can add a subset of groups to scan or exclude from scanning.

 

See Also

For more information on this new feature for Aperture, use this link:
https://docs.paloaltonetworks.com/aperture/aperture-admin/connect-aperture-directory-services.html

For other Aperture features, Aperture Administrator Guide, or Videos on Aperture, please visit the TechDocs site here:
https://docs.paloaltonetworks.com/aperture

 

Protect Azure Deployments

https://www.paloaltonetworks.com/security-for/infrastructure/azure 

 

Thanks for taking time to read this blog.  Don't forget to thumbs up this if you liked it, and we welcome all comments down below.

 

Stay Secure,

Joe Delio

End of line

  • 3781 Views
  • 0 comments
  • 1 Likes
Register or Sign-in
Labels
Popular Blogs
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks