09-21-2023 04:09 AM - edited 09-21-2023 04:10 AM
our requirement is that temporary internet access systems want to remove automatically after specific period. any options available in Palo Alto?
09-21-2023 06:00 AM
You would build out a schedule and assign it to any security policies that you want to allow temporarily. When the schedule is active, the rule will match traffic, but when it isn't it won't match anything anymore because of the schedule.
The one thing to keep in mind with scheduled access is that it doesn't kill off established sessions at the end of the schedule. So if that is a requirement you would want to pair it with a scheduled script that kills off any active sessions associated under any policies associated with a schedule. Easily done through the API, just something to be mindful of as you build scheduled access out. This may, or may not, be of any consequence to what you're actually trying to establish.
09-21-2023 11:19 PM
@BPry thanks for the update I just want a confirmation that can we give access to an user for one day which can automatically removed after the time interval which we have given. if we can where can we do this
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
