How to create an application test using API in SASE

Autonomous DEM API | Develop with Palo Alto Networks (pan.dev)

Prisma Access Configuration APIs | Develop with Palo Alto Networks (pan.dev)

Hello! I am looking to create an ADEM application test using an API, but I couldn't find relevant informatio

CVE-2023-43177

A security vendor alerted us about a zero-day alert (CVE-2023-43177) for CrushFTP and said that Palo Alto Prisma SASE / Strata Cloud /Prisma Access may be affected.

Can anyone confirm or deny? 

Prisma Access Release 1.7 is Here !

Prisma Access Release 1.7 is Here!

Palo Alto Networks has been working hard on expanding Prisma Access capabilities, including PAN-OS 9.1 support, new traffic steering functionality, adding a new compute location, and other enhancements !

Make su

Primsa Sase Web Security

Hi all 

I am trying to understand the Prisma Access Cloud Managed Web Security policies. There are options to match on users or services. But how is traffic identified as "Web" if all settings are left to default. And will Web Security policy take

Blocking traffic initiated from Trusted Zone - AWS

Hi,

Looking for some guidance before I start going down the wrong route. We use Prisma SASE - Panorama managed. We have an STS VPN Connection (service connection) into our AWS Estate. We have a security policies allowing traffic from Trust to Trust

Question about Tunnel Settings

We currently have Prisma Access set up and configured and we are in the process of rolling it out to the rest of the organization as a replacement for Citrix. One scenario that has come up has been the question of how we address IT staff and give the

Palo-hosted EDL empty when using certificate profile

Hi Guys,

I can’t use my SaaS EDLs in Prisma. It works fine on-prem, but in Prisma the list contains 0.0.0.0/0 entry.

When I remove certificate profile, it work well.

I configured decryption exclusion for Prisma Infra subnet as I had decryption erro

Prisma’s DNS Proxy

Hi Guys,

I have a problem with DNS Proxy in Prisma.

it’s the same IP address as monitoring target (for on-prem to prisms IP-Sec tunnels).

Which tunnel is correct for DNS-Proxy traffic - Remote Network or Service Connection (or both)?

It does not

Prisma Access Cloud API for snippets

Hi all, I have been testing the Prisma Access Cloud Managed API. I see the endpoints for working with configuration objects at group level (e.g. address objects, security rules,etc.), but how do you query or configure them in a snippet? 

We have root

Restrict Service Connection Access Based on User Group?

Hello,

I have a quick question that I haven't been able to find a definitive answer to.  

Background:
My users are 100% remote.  We have a Prisma SASE instance that we use for remote user access.  In this SASE instance, we have a service connection t

Prisma Access - Security Group pull

How do I train Prisma Access to only pull security group and not distribution group from AD?

Thanks,

GlobalProtect MFA on iOS

Hi,

Has anyone configured 2FA on iOS? We are looking at the possibility of authenticating iOS users to Prisma Access via GlobalProtect. We understand that we can use client certs on the devices, but is it possible to use 2FA on the iOS devices, and

Prisma Access Panorama vs Cloud Managed

We are assessing Prisma Access adoption and wanted to hear you opinion on which managed mode to choose - Prisma or Cloud managed. 

Prisma SASE - MacOS & Global Protect

Hello All 

Pulling my hairdout here metaphorically . 

Having issues where Global Protect just drop connections to Prisma. 

I actually saw this first hand this morning. 

I am running a MacOs 13.6.1 on an M1 with GP version 6.2.1.

Was a general i

Prisma Access Global Protect GWs integration with On-Prem Portal/GWs

Hello,

How is possible to integrate GP gateways, we have design that on each data center there is gateway and on main DC portal and gateway, recemtly we deployed small Prisma Access deployemnt just connected one branch office. Currently there are two