11-22-2022 11:05 AM - edited 11-22-2022 11:05 AM
As I recently played with this feature maybe a cool intergration will be with the on-prem home assistant or the cloud services AWS IoT Core/Azure IoT hub as they use the MQTT protocol. Palo Alto may even decrypt the MQTT as if encryption is enabled it uses SSL/TLS and by connecting to home assistant or the cloud services AWS IoT Core/Azure IoT hub with API then Palo Alto IoT Security can compare client identifier (ClientId) in the packet to the device type seen in home assistant/AWS IoT Core/Azure IoT hub and then record the packet IP address.
Just a suggestion from a person that used Home Assistant and MQTT to manage many IoT devices in the old days. Still this will not help against shadow IoT but seems like a nice feature 🙂
12-03-2022 01:22 AM - edited 12-05-2022 08:44 PM
We kind of show that under the device profiles section with the intel we gather from the crowdsourced telemetry. Here is a sample where you can see the common/trusted applications used along with the unique applications which are unique to your environment. This ML based behavior verdict helps NetSec in policy creation. Aetna Medicare Payment
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!