This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Prisma Access Discussions
Prisma Access secures access to the cloud for branch offices and mobile users anywhere in the world with a scalable, cloud-native architecture that will soon be managed via a new streamlined cloud management UI.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Prisma Access Discussions
Prisma Access secures access to the cloud for branch offices and mobile users anywhere in the world with a scalable, cloud-native architecture that will soon be managed via a new streamlined cloud management UI.
About Prisma Access Discussions
Prisma Access secures access to the cloud for branch offices and mobile users anywhere in the world with a scalable, cloud-native architecture that will soon be managed via a new streamlined cloud management UI.

Discussions

Start a conversation

Welcome to the Prisma Access Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 2617 Views
  • 0 replies
  • 1 Likes

BGP, Community settings for Prisma

Hi all, i have some questions regarding community settings because we use this in our org to influence routes selection.Based on this document "https://docs.paloaltonetworks.com/prisma/prisma-access/prisma-access-panorama-admin/prepare-the-prisma-access-infrastructure/route-preferences-for-service-connection-traffic.html" 1) Are the communities ...

Routing - Last Resort Network

Hello, I am sure I tested this previously and found it work but today when I am testing the routing seems to fail - as a background my sites have Internet using Prisma Remote networks and also backend MPLS connectivity layout example:I have all my Remote sites - with static advertisements192.168.1.0/24 - Site A192.168.2.0/24 - Site B192.168.3.0...

can we get user's city/region/state info in Prisma Access

We have a requirement of finding Location of our Work from home users. Currently we are able to extract the Report with country. So now we want to extract the User’s accurate geo location. There are approx. 5000 VPN users.I got to know that Prisma access has Autonomous Digital Experience Management (ADEM). Please let me now if this solution or a...

Deepak_K by L3 Networker
  • 2179 Views
  • 0 replies
  • 0 Likes

Intermittent Internal DNS resolution issue over Global Protect Prisma

The issue is unable to access anything on internal network when connected to VPN due to DNS resolution issue. Unable resolve any internal URL, Hostnames..etc but external URLs resolution is working like google.com, paloaltonetworks.com..etc.The strange thing is if we do ping <website> it is not resolving to any IP but if we do nslookup &lt...

Prisma Access 2.0 Upgrade

Hi everyone, as you are upgrading to Prisma Access 2.0, you may have some questions along the way. We want to let you know that we are here to help and want to make sure you have all the resources and information you need. This discussion will have experts who can help guide you through your upgrade journey with any questions you may have.

matani by L3 Networker
  • 6311 Views
  • 4 replies
  • 3 Likes

Prisma Access and LDAP Group Mapping with Directory Sync Agent

Hello,I'm trying to implement group-based policies in a standalone Prisma Access deployment. I'm working only with Prisma for Remote Networks. For this purpose I have enabled a Directory Sync Agent to retrieve groups from LDAP Server but Prisma don't have connection to Active Directory so we don't have LDAP Server Profile yet. I need to confirm ...

How do you control restricting access to enterprise versions of your SaaS applications?

When it comes to restricting access to the enterprise vs personal version of a given SaaS application, there are multiple ways in which it is handled: One can make use of the relevant App-ID signatures to only allow enterprise accessMake use of the HTTP Header insertion feature to restrict accessCertain SaaS applications provide a unique URL for...

MBhasin by L2 Linker
  • 2776 Views
  • 0 replies
  • 0 Likes

Caveats for Redistributing User-Id info from Prisma Access to on-prem firewalls

At the time of this writing, the process for redistributing User-ID info from Prisma Access to on-prem firewalls is documented publicly here: https://docs.paloaltonetworks.com/prisma/prisma-access/prisma-access-panorama-admin/configure-user-based-policies-with-prisma-access/redistribute-userid-information-for-users-and-networks However this docu...

KPawlak by L1 Bithead
  • 2863 Views
  • 0 replies
  • 0 Likes

Connecting Prisma Access to your Public Cloud

Broadly speaking, there are a few ways to bridge Prisma Access (or a VM/physical firewall for that matter) into your public cloud environment. I will be using AWS as my example by very broadly these ideas still apply. AWS documents 4 ways to connection via VPN here. We're focused on the S2S use case, which as you can see they reference 2 options...

KPawlak by L1 Bithead
  • 5446 Views
  • 0 replies
  • 1 Likes

Allowlisting your Prisma Access Tenant

Hi all, I've found that this is a frequent question that comes up for new and existing Prisma Access customers. Long story short there are a couple of ways to go about this. The most advanced and scalable option would be to use a solution like Cortex XSOAR to automate things. For example, if you were to deploy a new Mobile User location, Cortex...

KPawlak by L1 Bithead
  • 4064 Views
  • 0 replies
  • 3 Likes

Prisma Gateway Cert Expiration

Has anyone else noticed that the Prisma Access gateway certs expired today? A large majority of our users are unable to connect since GP sees the certs aren't valid. Trying to determine if this is isolated to us (which I doubt).

infrastructure subnet sizing prisma access ?

What are the sizing guidelines for the infrastructure subnet for prisma access? I've read the below, and I know it's for services to talk to each other on the backend for prisma/use services. But what are the sizing guidelines, and what does one base this off of? It states "large number of IP address will be required" - but I have yet to fi...

Sec101 by L4 Transporter
  • 4137 Views
  • 1 replies
  • 0 Likes

Resolved! FW at branch with SASE

Hello , We have a customer having branches all across the globe but very very less MPLS . 95 % they are con,nected via IPSEC VPN Tunnels They have Fortinet Fortigate FWs at their Branches and DCs Does Prisma Access need Palo Alto FW at each Branch ? I believe only thing needed is to make an IPSEC Connection from Branch to the SASE cloud which e...

  • 385 Posts
  • 78 Subscriptions
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks