Prisma Access Discussions
Prisma Access secures access to the cloud for branch offices and mobile users anywhere in the world with a scalable, cloud-native architecture that will soon be managed via a new streamlined cloud management UI.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Prisma Access Discussions
Prisma Access secures access to the cloud for branch offices and mobile users anywhere in the world with a scalable, cloud-native architecture that will soon be managed via a new streamlined cloud management UI.
About Prisma Access Discussions
Prisma Access secures access to the cloud for branch offices and mobile users anywhere in the world with a scalable, cloud-native architecture that will soon be managed via a new streamlined cloud management UI.

Discussions

Welcome to the Prisma Access Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 2721 Views
  • 0 replies
  • 1 Likes

Fail when push config to remote networks

I have an issue when pushing config to Prisma access ( remote networks), specifically as below:Prisma Access Configuration validation failed[rn-single-ip] IPSec Termination Node cannot be empty. Please specify either NPN or SPN Please help me to resolve this issue.Thanks!

chungtran_0-1690450344173.png

Object import to Cloud Managed Prisma Access

We are just starting to spin up our cloud managed Prisma Access and Global Protect and I was wondering if there was a way to bulk import objects (address/security/etc) into Prisma Access? There will be a number of various IP ranges and such that I do not want to have to create manually, as the total number will easily be in the hundreds. There d...

Restrict access to internal resources by GP region

Hi, We would like to restrict access to internal resources (service connection) for Prisma mobile users connected to other Global Protect gateways than our main one in the UK. Does anyone know how we could go about this? We will of course have policies to allow internet access but nothing more. The Prisma IP pools include UK in emea/Europe so ...

RaoulG by L0 Member
  • 2599 Views
  • 1 replies
  • 0 Likes

Resolved! Prisma Access Internet Break-out in prisma / aggregate bandwith.

Hi, My first question regarding the aggregate bandwith feature. For example on computer location i will assing 100 Mbit of traffic. At the Guaranteed bandwith ratio I will put in 100% and reserved for Guaranteed bandwidth i also put in 100. So if i have 5 sites they will all receive a guaranteed 20 Mbps. Suppose all sites together are only...

zGomez_0-1684333784284.png
zGomez by L3 Networker
  • 4214 Views
  • 2 replies
  • 0 Likes

Resolved! Communication Between RN-SPN and SC

Hi All, I have few doubts with RN-SPN and SC. > Can we create access from RN-SPN to SC? > Can we communicate from SC to RN-SPN? > Can we get access from RN-SPN to RN-SPN itself? If so how can we acheive this please suggest? Regards, Sanjay S

Error on Panorama managed Primsa Gateway when using certificate profile

We just spun up a panorama managed prisma access portal and gateway. Both the portal and gateway use either a certificate profile or saml for the authentication (the authentication on both the portal and the gateway match each other), however, when the certificate profile is attached to the gateway it returns a "Could not verify the server certi...

Claw4609 by L5 Sessionator
  • 2587 Views
  • 1 replies
  • 0 Likes

Prisma Access BW Allocation

Hi All, Would be great if you can help me clarify these questions: 1- On Panorama managed Prisma Access we can configure the BW Allocation on Compute location level, assuming a Scenario of multiple compute locations used and allocated BW out of the total BW Subscription purchased, and No Qos is configured at all. What would happen if one of the ...

dalia2 by L0 Member
  • 2006 Views
  • 1 replies
  • 0 Likes

SASE - ACL to manage Access - DONT DO IT

Second time I have tried to add an ACL onto the Cloud Managed ACL Access Control/IP Restrictions . I have added 5 public subnets. Locks you out everytime . There is obviously a huge bug here. You think it would be easy to revert the change via TAC. Dont believe it for a second !!!!!!! There seems to be only one backend engineer...

Prisma SASE global Protect not asking for password

we are using Prisma Access for global protect solutions.configured to have app configuration on-demand - only when user click to connect on authentication using a SAML with Azure, SSO is not ON. when user click connect it connects without asking credentials. login lifetime is set to 2 hours, save credentials is set to none.requirement is to ha...

msaranu by L0 Member
  • 1946 Views
  • 2 replies
  • 0 Likes

Prisma Access logs are visible on Panorama

Hi Folks, We have Prisma access managed through Panorama. After upgrading the Prisma access we are not able to see the Prisma Access traffic logs on the Panorama under Monitor---> Traffic Logs. What are the parameters we need to check and anyone faced the issue before. Thanks in Advance!

Migration from Twistlock to Prisma SaaS Console

I am planning to move my container ecosystem monitoring from On PREM Twistlock to Prisma SaaS version . Would like to understand few points : 1) Can I export existing Meta Data of On Prem Twistlock to Prisma Cloud 2) In case first option is not possible , should I need to on board all the workloads to Prisma. 3) Do I need reconfigure all workl...

Pranay by L0 Member
  • 1288 Views
  • 0 replies
  • 0 Likes

Resolved! Panorama managed Prisma - device telemetry errors after upgrade

Hi all,We've decided to upgrade our Panorama from 9.1.3 to 10.1.5-h4. Bad call. For one, 10.1.5-h4 has a "hip-profile unexpected here" bug that was fixed earlier. For that, downgrading to 10.1.4 resolves it for now. But there is also this pesky "device telemetry" bug that we ran into. All the firewall templets have the UI option where you can c...

Resolved! Prisma access with Azure authentication

Hello, I have laptops for remote access authenticating with Active Directory for Prisma Access. I would like to now setup some users to be able to authenticate through Azure so they don't have to backhaul into our network. I have an Azure account but do i need to buy a new service connection (SC-CAN) to allow my users to have the option of a...

ohareka by L1 Bithead
  • 3050 Views
  • 2 replies
  • 0 Likes

RNs

3 service connections are being advertised through the 10.0.0.0/8 network via EBGP from data centers. I noticed that traffic from the RN-SPN loopback addresses is all reaching the on-prem environment (10.0.0.0/8) via the same service connection when we'd expect IBGP in Prisma to send traffic to on-prem networks via the nearest service connection...

cogbu by L1 Bithead
  • 2167 Views
  • 1 replies
  • 0 Likes
  • 393 Posts
  • 79 Subscriptions