Question about Tunnel Settings

We currently have Prisma Access set up and configured and we are in the process of rolling it out to the rest of the organization as a replacement for Citrix. One scenario that has come up has been the question of how we address IT staff and give the

Palo-hosted EDL empty when using certificate profile

Hi Guys,

I can’t use my SaaS EDLs in Prisma. It works fine on-prem, but in Prisma the list contains 0.0.0.0/0 entry.

When I remove certificate profile, it work well.

I configured decryption exclusion for Prisma Infra subnet as I had decryption erro

Prisma’s DNS Proxy

Hi Guys,

I have a problem with DNS Proxy in Prisma.

it’s the same IP address as monitoring target (for on-prem to prisms IP-Sec tunnels).

Which tunnel is correct for DNS-Proxy traffic - Remote Network or Service Connection (or both)?

It does not

Prisma Access Cloud API for snippets

Hi all, I have been testing the Prisma Access Cloud Managed API. I see the endpoints for working with configuration objects at group level (e.g. address objects, security rules,etc.), but how do you query or configure them in a snippet? 

We have root

Prisma Access - Security Group pull

How do I train Prisma Access to only pull security group and not distribution group from AD?

Thanks,

Prisma SASE - MacOS & Global Protect

Hello All 

Pulling my hairdout here metaphorically . 

Having issues where Global Protect just drop connections to Prisma. 

I actually saw this first hand this morning. 

I am running a MacOs 13.6.1 on an M1 with GP version 6.2.1.

Was a general i

Prisma Access Global Protect GWs integration with On-Prem Portal/GWs

Hello,

How is possible to integrate GP gateways, we have design that on each data center there is gateway and on main DC portal and gateway, recemtly we deployed small Prisma Access deployemnt just connected one branch office. Currently there are two

How to block Google Docs but single Spreadsheets link on Prisma Access Cloud-Managed

Hi!

We are using Prisma Access Cloud-Managed, we have "Online-Storage-and-Backup" category blocked using "URL Access Management Profile", this makes Google Docs to be blocked.

Now I need to give access to a user only to a single link of Google Do

EXCLUDE REGIONS TO THE PORTAL | PRISMA ACCESS

Good afternoon,
I have prisma access, I want to exclude regions so they can't connect to the portal.
For now, make policies excluding regions for trust (prisma) to trust (LAN) and it works. What I want is to not be able to connect to the portal.

Please

Prisma Access location and Compute location

Hello Everyone,

I have some questions about Prisma Access locations (RN-SPN vs MU-SPN), but I was unable to discover the answers in the documents that were provided. It would be wonderful if you could clarify something for me:

1. Difference betwe

VPN PC - PRISMA - Fortinet

Hello,
I currently have an infra with customers who set up VPNs from their PC to Prisma, then a VPN between PRISMA and our PaloAlto.
I'd like to be able to set up a VPN between PRISMA and a Fortinet FireWall.
PC to Primas, then Prisma to Fortinet (back

Prisma Access Global Protect

Hello Everyone,

If global protect is configured as an Always ON method and it keeps failing for whatever reason, what would happen? will it allow local network access or internet access or block anything until VPN gets established?

Is there any d

Decryption Profile - what does not selecting an auth algorithm actually do

Hello,

Our internal security team is suggesting we disable SHA1 as an authentication algorithm for our decryption profile we attach to our prisma access users. My question is, if I do uncheck that box under Objects > decryption > decryption profile >