This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Prisma Access Discussions
Prisma Access secures access to the cloud for branch offices and mobile users anywhere in the world with a scalable, cloud-native architecture that will soon be managed via a new streamlined cloud management UI.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Prisma Access Discussions
Prisma Access secures access to the cloud for branch offices and mobile users anywhere in the world with a scalable, cloud-native architecture that will soon be managed via a new streamlined cloud management UI.
About Prisma Access Discussions
Prisma Access secures access to the cloud for branch offices and mobile users anywhere in the world with a scalable, cloud-native architecture that will soon be managed via a new streamlined cloud management UI.

Discussions

Start a conversation

Welcome to the Prisma Access Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 2681 Views
  • 0 replies
  • 1 Likes

Restrict access to internal resources by GP region

Hi, We would like to restrict access to internal resources (service connection) for Prisma mobile users connected to other Global Protect gateways than our main one in the UK. Does anyone know how we could go about this? We will of course have policies to allow internet access but nothing more. The Prisma IP pools include UK in emea/Europe so ...

RaoulG by L0 Member
  • 2566 Views
  • 1 replies
  • 0 Likes

Resolved! Prisma Access Internet Break-out in prisma / aggregate bandwith.

Hi, My first question regarding the aggregate bandwith feature. For example on computer location i will assing 100 Mbit of traffic. At the Guaranteed bandwith ratio I will put in 100% and reserved for Guaranteed bandwidth i also put in 100. So if i have 5 sites they will all receive a guaranteed 20 Mbps. Suppose all sites together are only...

zGomez_0-1684333784284.png
zGomez by L3 Networker
  • 4147 Views
  • 2 replies
  • 0 Likes

Resolved! Communication Between RN-SPN and SC

Hi All, I have few doubts with RN-SPN and SC. > Can we create access from RN-SPN to SC? > Can we communicate from SC to RN-SPN? > Can we get access from RN-SPN to RN-SPN itself? If so how can we acheive this please suggest? Regards, Sanjay S

Error on Panorama managed Primsa Gateway when using certificate profile

We just spun up a panorama managed prisma access portal and gateway. Both the portal and gateway use either a certificate profile or saml for the authentication (the authentication on both the portal and the gateway match each other), however, when the certificate profile is attached to the gateway it returns a "Could not verify the server certi...

Claw4609 by L5 Sessionator
  • 2534 Views
  • 1 replies
  • 0 Likes

Prisma Access BW Allocation

Hi All, Would be great if you can help me clarify these questions: 1- On Panorama managed Prisma Access we can configure the BW Allocation on Compute location level, assuming a Scenario of multiple compute locations used and allocated BW out of the total BW Subscription purchased, and No Qos is configured at all. What would happen if one of the ...

dalia2 by L0 Member
  • 1978 Views
  • 1 replies
  • 0 Likes

SASE - ACL to manage Access - DONT DO IT

Second time I have tried to add an ACL onto the Cloud Managed ACL Access Control/IP Restrictions . I have added 5 public subnets. Locks you out everytime . There is obviously a huge bug here. You think it would be easy to revert the change via TAC. Dont believe it for a second !!!!!!! There seems to be only one backend engineer...

Prisma SASE global Protect not asking for password

we are using Prisma Access for global protect solutions.configured to have app configuration on-demand - only when user click to connect on authentication using a SAML with Azure, SSO is not ON. when user click connect it connects without asking credentials. login lifetime is set to 2 hours, save credentials is set to none.requirement is to ha...

msaranu by L0 Member
  • 1909 Views
  • 2 replies
  • 0 Likes

Prisma Access logs are visible on Panorama

Hi Folks, We have Prisma access managed through Panorama. After upgrading the Prisma access we are not able to see the Prisma Access traffic logs on the Panorama under Monitor---> Traffic Logs. What are the parameters we need to check and anyone faced the issue before. Thanks in Advance!

Migration from Twistlock to Prisma SaaS Console

I am planning to move my container ecosystem monitoring from On PREM Twistlock to Prisma SaaS version . Would like to understand few points : 1) Can I export existing Meta Data of On Prem Twistlock to Prisma Cloud 2) In case first option is not possible , should I need to on board all the workloads to Prisma. 3) Do I need reconfigure all workl...

Pranay by L0 Member
  • 1275 Views
  • 0 replies
  • 0 Likes

Resolved! Panorama managed Prisma - device telemetry errors after upgrade

Hi all,We've decided to upgrade our Panorama from 9.1.3 to 10.1.5-h4. Bad call. For one, 10.1.5-h4 has a "hip-profile unexpected here" bug that was fixed earlier. For that, downgrading to 10.1.4 resolves it for now. But there is also this pesky "device telemetry" bug that we ran into. All the firewall templets have the UI option where you can c...

Resolved! Prisma access with Azure authentication

Hello, I have laptops for remote access authenticating with Active Directory for Prisma Access. I would like to now setup some users to be able to authenticate through Azure so they don't have to backhaul into our network. I have an Azure account but do i need to buy a new service connection (SC-CAN) to allow my users to have the option of a...

ohareka by L1 Bithead
  • 3011 Views
  • 2 replies
  • 0 Likes

RNs

3 service connections are being advertised through the 10.0.0.0/8 network via EBGP from data centers. I noticed that traffic from the RN-SPN loopback addresses is all reaching the on-prem environment (10.0.0.0/8) via the same service connection when we'd expect IBGP in Prisma to send traffic to on-prem networks via the nearest service connection...

cogbu by L1 Bithead
  • 2140 Views
  • 1 replies
  • 0 Likes

Resolved! Split-Tunnelling for M365

Hi All, We need to implement Split-Tunneling for M365 only for the Mobile Users in Prisma. Please suggest us the best way to Implement? Can we implement using EDL? Or we have to add all the FQDNs one by and then acheive it? Regards, Sanjay S

ADEM for Linux

I have been searching for information about whether PA has plans to integrate ADEM for Linux distributions, specifically for Ubuntu, but I have not been able to find any relevant information. I'm curious if anyone knows whether this integration is on their roadmap or if they have any updates on this topic.

  • 391 Posts
  • 79 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks