China mainland Mobile users questions

Hi expert,

If we do not have Prisma Access China license, but still want to connect China mainland mobile users to closed MU-SPN overseas, say Japan pop. If this will be blocked by Greate FW, and if it is, if any workaround. 

Also, can connect to t

Prisma Access CIE and User-ID mapping not working for groups

Hi, all,

thanks in advance for any help about an issue we are facing with User-ID agent on on-prem and EntraID with CIE integration.Let me explain our topology a bit deeper:

On the one hand, we have a Remote Network with some Windows servers withou

Unable to establish tunnel during Service Connection configuration (Details Added with Screenshot)

Dear Community Expert Team,

This my first post in Community.

I really enjoy the Palo Alto Prisma Access SASE.

Find the below details:

Before I am going to production configuration I plan to test in my LAB environment for multiple of POC.

Requ

Prisma Access with ECMP

Hi Everyone,

We are trying to troubleshoot an issue where enabling ECMP on the Virtual Router breaks Prisma Access. We have 3 circuits configured (see pic) to load balance internet traffic. This firewall is also a service connection back to Prisma.

Prisma Browser conditional access issue with outlook app

Hello all, I'm facing an issue after trying to enable conditional access policy on Azure entra id in order to prevent the use of other browser except from Prisma Browser. Although the conditional access works for all the applications (SharePoint, in

New global protect install for Windows x64 v6.3.3c828 has broken MSI

Hi,

We have just downloaded the latest GP for Windows x64 v6.3.3c828. The MSI properties indicate that the product code is {B316DC7F-EB20-4A36-AA0A-96099FA142DB} however when it installs it installs as the previous version product code {CD809CD6-9D01

Cross border connectivity option(Prisma Access China)

Attention: JAPAC TPM team
Hello Team,

When integrating Prisma Access China with Prisma Access Global,
my understanding is that one of the following options is required:
-Cross Border Line (CBL)
-Premium Internet (PI)

We are considering Cross Border L

New RN-SPN

Hi Team,

Today I created a new RN-SPN in one of the US location and I see the Service Endpoint Address is being displayed with the FQDN.

Have created multiple nodes before and never saw an FQDN and it use to be IP address always.

Just wanted to con

CVE-2025-4619

Attention: JAPAC TPM team
Hello Team,

https://security.paloaltonetworks.com/CVE-2025-4619
I have reviewed the vulnerability information above.

It states that upgrades have been completed for all PrismaAccess instances if there are no scheduling con

Notification of Content Displayed in SCM Announcements

Attention: JAPAC TPM team
Hello Team,

Could you please let me know about notifications for the content displayed in SCM Announcements (bell icon)?

Is there a way to send the content shown in the SCM Announcement (bell icon) via email or other methods?
I

Please tell me how to check the license in SCM.

Attention: JAPAC TPM team
Hello Team,

I am checking the following URL:

https://docs.paloaltonetworks.com/prisma-access/activation-and-onboarding/your-prisma-access-license/validate-your-license

It seems that the NGFW and Prisma Access overview page me

Please tell me about the new feature "BGP Filtering and Route Metric Support for Prisma Access" in Prisma Access 6.0.

Attention: JAPAC TPM team
Hello Team,

I confirmed from the following documents that BGP filtering and route metric support have been introduced as new features in Prisma Access 6.0:
(1) https://docs.paloaltonetworks.com/prisma-access/release-notes/6-