This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Prisma Access Discussions
Prisma Access secures access to the cloud for branch offices and mobile users anywhere in the world with a scalable, cloud-native architecture that will soon be managed via a new streamlined cloud management UI.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Prisma Access Discussions
Prisma Access secures access to the cloud for branch offices and mobile users anywhere in the world with a scalable, cloud-native architecture that will soon be managed via a new streamlined cloud management UI.
About Prisma Access Discussions
Prisma Access secures access to the cloud for branch offices and mobile users anywhere in the world with a scalable, cloud-native architecture that will soon be managed via a new streamlined cloud management UI.

Discussions

Start a conversation

Welcome to the Prisma Access Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 2678 Views
  • 0 replies
  • 1 Likes

Prisma Access rules : how to calculate when used?

Viewing through Panorama 10.0.6, while looking at my Mobile_Users_Device_Group, I see various rules showing their levels of usage. What is difference (if any?) between rules that show "unused" vs. those that show "-" in their Rule Used state? Toggling "highlight unused rules" shades both types of rules out, but would be great to understand what ...

Configuring Prisma Access Remote networks and Service Connections on the same device/site

Hi everyone, I wanted to know what would be the challenges to deploy Service Connection and Remote Networks on the same device/site and what would be the best solution or workaround as per PAN best practices As per my understanding, if we deploy Service Connection and Remote Networks then, there could be some routing challenges As a standard co...

Resolved! Is it possible for Prisma Access to split the traffic between the on-premise globalprotect gateways and the prisma cloud based on app/domain/ip_addr?

When using Prisma access and on-premise devices can you do someting like per app_process/domain/destination_ip gateway selection (some traffic to be send to the geteways other to the prisma cloud)? What I mean by this is to do like a split-tunnel for the traffic but instead the excluded appications to be send directly to Internet to the prisma c...

Resolved! Can the internal DNS server be behind SPN not a CAN?

Can the internal global or specific internal DNS servers for mobile users or remote networks be behind SPN and not a CAN as the CAN is just there for routing for mobile users without a real active ipsec tunnel? Basically I mean the internal DNS servers to be in the remote network address space that is connected to the SPN, because the SPN pro...

DNS resolution issue in prisma access for internal domains

We want to access one of the url fs.hdfc.com, which accessible publicly. But when when we connect to Global Protect via Prisma access for this url, DNS Server is resolving for internal address i.e. private ip address.While accessing from outside network, we are able to resolve it for public ip. We want from inside(when connected to GP) and outsi...

BGP, Community settings for Prisma

Hi all, i have some questions regarding community settings because we use this in our org to influence routes selection.Based on this document "https://docs.paloaltonetworks.com/prisma/prisma-access/prisma-access-panorama-admin/prepare-the-prisma-access-infrastructure/route-preferences-for-service-connection-traffic.html" 1) Are the communities ...

Routing - Last Resort Network

Hello, I am sure I tested this previously and found it work but today when I am testing the routing seems to fail - as a background my sites have Internet using Prisma Remote networks and also backend MPLS connectivity layout example:I have all my Remote sites - with static advertisements192.168.1.0/24 - Site A192.168.2.0/24 - Site B192.168.3.0...

can we get user's city/region/state info in Prisma Access

We have a requirement of finding Location of our Work from home users. Currently we are able to extract the Report with country. So now we want to extract the User’s accurate geo location. There are approx. 5000 VPN users.I got to know that Prisma access has Autonomous Digital Experience Management (ADEM). Please let me now if this solution or a...

Deepak_K by L3 Networker
  • 2202 Views
  • 0 replies
  • 0 Likes

Intermittent Internal DNS resolution issue over Global Protect Prisma

The issue is unable to access anything on internal network when connected to VPN due to DNS resolution issue. Unable resolve any internal URL, Hostnames..etc but external URLs resolution is working like google.com, paloaltonetworks.com..etc.The strange thing is if we do ping <website> it is not resolving to any IP but if we do nslookup &lt...

Prisma Access 2.0 Upgrade

Hi everyone, as you are upgrading to Prisma Access 2.0, you may have some questions along the way. We want to let you know that we are here to help and want to make sure you have all the resources and information you need. This discussion will have experts who can help guide you through your upgrade journey with any questions you may have.

matani by L3 Networker
  • 6447 Views
  • 4 replies
  • 3 Likes

Prisma Access and LDAP Group Mapping with Directory Sync Agent

Hello,I'm trying to implement group-based policies in a standalone Prisma Access deployment. I'm working only with Prisma for Remote Networks. For this purpose I have enabled a Directory Sync Agent to retrieve groups from LDAP Server but Prisma don't have connection to Active Directory so we don't have LDAP Server Profile yet. I need to confirm ...

How do you control restricting access to enterprise versions of your SaaS applications?

When it comes to restricting access to the enterprise vs personal version of a given SaaS application, there are multiple ways in which it is handled: One can make use of the relevant App-ID signatures to only allow enterprise accessMake use of the HTTP Header insertion feature to restrict accessCertain SaaS applications provide a unique URL for...

MBhasin by L2 Linker
  • 2809 Views
  • 0 replies
  • 0 Likes

Caveats for Redistributing User-Id info from Prisma Access to on-prem firewalls

At the time of this writing, the process for redistributing User-ID info from Prisma Access to on-prem firewalls is documented publicly here: https://docs.paloaltonetworks.com/prisma/prisma-access/prisma-access-panorama-admin/configure-user-based-policies-with-prisma-access/redistribute-userid-information-for-users-and-networks However this docu...

KPawlak by L1 Bithead
  • 2916 Views
  • 0 replies
  • 0 Likes
  • 390 Posts
  • 79 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks