Prisma Access Discussions

DNS not resolving through Prisma Access for a particular domain

We have a hostname that doesn't get resolved by DNS while running through Prisma Access.  It works fine if you are off the internal network.  I know DNS is proxied via Prisma Access so I'm wondering how to fix this issue.  If I bypass DNS (entry in t

prima access

How to successfully configure split tunnel based on application?

BGP configuration on active/passive setup on service connection

Hi,

Need your suggestions on setting up BGP connection between active and passive setup on service connection. 

Here is the eg:

One service connection with active/passive tunnel between Prisma access to Data center.

Diagram is attached.

BGP

Integration Challenges Between Prisma SASE and ServiceNow

Hello community, 

My team and i have been working on integrating Prisma SASE with ServiceNow to streamline our incident response process, We've followed the steps outlined in the official documentation but, unfortunately, have encountered some chal

GlobalProtect MFA on iOS

Hi,

Has anyone configured 2FA on iOS? We are looking at the possibility of authenticating iOS users to Prisma Access via GlobalProtect. We understand that we can use client certs on the devices, but is it possible to use 2FA on the iOS devices, and

Web Security vs URL access management profiles

Hello,

I'm curious about the distinctions between Web Security (SWG) and URL access management profiles (Web filtering).  when is it appropriate to use each one? Additionally, I'm interested in knowing if they can be implemented simultaneously and wh

Fileupload Api scanning

Hi Team,

Can anyone suggest which Prisma cloud module suitable for antimalware scan while end user uploads file with Fileupload API to the server

(please refer the link for file upload vulnerabilities : https://malware.expert/modsecurity/php-file-u

Use prisma from security tool option in github

How can I import and prisma from security tool option in github as show in the screeshot?

Configuration Policy for Online Meetings only allow Port UDP

We created a Security policy to allow Online meeting only UDP ports that enter Prisma Access. There are 4 applications namely Webex, Google meet, Teams, and Zoom. 3 applications other than Zoom are running properly according to the rules made, but th

Using Cloud IDentity Engine to enforce group-based policies in Azure AD

Hi All,

Question on retrieving user-group mappings only, using Cloud Identity Engine to enforce group-based policies.

So i have this setup at the moment:
Panorama managed FWs in Azure with Global protect (works)
The FWs use SAML currently for authent

How to block command & control traffic on IP address

Targeted Command & control processes or nefarious data extractions primarily go outbound using a IP address rather than a FQDN for the URI.

In PRISMA how can i create a rule to block all all outbound traffic directed at IP addresses (not preknown) ,