This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Prisma Access Discussions
Prisma Access secures access to the cloud for branch offices and mobile users anywhere in the world with a scalable, cloud-native architecture that will soon be managed via a new streamlined cloud management UI.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Prisma Access Discussions
Prisma Access secures access to the cloud for branch offices and mobile users anywhere in the world with a scalable, cloud-native architecture that will soon be managed via a new streamlined cloud management UI.
About Prisma Access Discussions
Prisma Access secures access to the cloud for branch offices and mobile users anywhere in the world with a scalable, cloud-native architecture that will soon be managed via a new streamlined cloud management UI.

Discussions

Start a conversation

Welcome to the Prisma Access Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...

JayGolf by Community Team Member
  • 2615 Views
  • 0 replies
  • 1 Likes

Authenticating GP users to Prisma Access with user certificates?

Hi folks, We are currently using an LDAP auth profile to auth our GP clients to PA. This is working fine, but the portal logs are just swamped with brute force attacks day & night and PAN refuses to fix this, so we are wanting to move over to certificate authentication instead. In brief, we have an AD-integrated MS PKI that issues user and...

Resolved! How to check which Remote Network tunnel handling traffic?

In our Prisma Access Remote Network deployment, we have created 2 sites, each sites having two IPSec tunnels configured as Primary and Secondary. I wanted to verify the logs in Log viewer to identify the tunnel which is currently handling the traffic as I can see option to filter based on sites not tunnels Any suggestion would helpful.

Prisma Access Api, stuck with initial requestes.

Hi,In the Prisma access i trying to do api call to get information of my console i have followed offical documentation like was able to generate access token and made a request to get "jobs" details when i try to run these commad curl -o --location "https://api.sase.paloaltonetworks.com/config/v1/jobs" \-H "Authorization: Bearer <MY ACCESS_TO...

balasuriyas_2-1728020029789.jpeg
balasuriyas_3-1728020256473.jpeg
B.Suriya by L2 Linker
  • 1940 Views
  • 2 replies
  • 0 Likes

Resolved! Pre-logon than switch to On-Demand

Hi all, I have configured prisma access GlobalProtect to authenticate pre-logon with computer certificate and than switch to on-demand. pre-logon works as expected and the on-demand authentication with SAML using CIE. I was wondering if there is option to configure pre-logon and always-on so when user connects to the station GlobalProtect ...

Maximt by L0 Member
  • 2203 Views
  • 1 replies
  • 0 Likes

Prisma Access with CIE

Hi All, Need your assistance. The problem is that test rule with user group doesn't have any hits. The users generating traffic are definitely part of the group. Setup: Prisma Access managed from On-prem Panorama. CIE with AD sync. Users and groups are visible from CIE dashboard. When policy rule configured I can choose from the groups list. ...

Prisma Access 3.2, Global Protect Internal Host Detection using Azure SAML MFA.

Hi,I am trying to setup internal host detection for Global Protect within Prisma Access 3.2. Global Protect authentication is using SAML with MFA. Due to the Portal requiring login before internal host detection can take place, how do I stop the MFA prompt being presented with I am joining my device to the corporate network?I have this worki...

Brodie_D by L0 Member
  • 6066 Views
  • 6 replies
  • 0 Likes

GlobalProtect on Mac does not retry after network connection unreachable.

We are deploying Prisma Access on both mac and windows computers. On the Mac computers, when the computer boots and the network is not initialized yet, we get the error: "The network connection is unreachable or the portal is unresponsive. Check the network connection and reconnect." Which is understandable. The issue is when the computer ...

Traffic Steering Logs

Hi Team, We are managing Prisma SASE from Panorama. We have traffic steering in place for few of the URL categories. May i know how can we check the logs and confirm the URL is taking the Traffic Steering policy or not? I dont see any options to check the logs in Monitor Tab.

Prisma Access connectivity to Azure VWAN (Service connection Secondary WAN link)

Hi all, as part of a prisma access deployment, we need to build service connection links between prisma access and Azure (via the azure virtual WAN service). We'd like to activate redundancy in the service connection links, and enable a function called: "WAN secondary SC Link" (passive service connection link) to configure service connections ...

BArcelin by L0 Member
  • 3079 Views
  • 2 replies
  • 0 Likes

Accepting Egress Allocated IP Whitelists on Strata Cloud Manager

Accepting Egress Allocated IP Whitelists on your Prisma Access Mobile-User infrastructure. When upgrades happen on the backend of your Prisma Access Infrastructure there is an automation flag that requires the customer to "accept" the egress IP whitelists for the configured regions that are used for thier SaaS applications. To make sure the...

nayubi_8-1721084068832.png
nayubi_3-1721081001113.png
nayubi_4-1721081016401.png
nayubi_5-1721082722280.png
nayubi by L1 Bithead
  • 3480 Views
  • 1 replies
  • 4 Likes

Having to reboot Mac to access VPN

We are seeing a rash of Macs users that have to reboot their machines to get Global Protect to function after it just stops working. in the logs I am seeing lots of repeating messages such as this 65): getaddrinfo of [inet_ntoa error] failed with error 8, nodename nor servname provided, or not knownP1918-T15883 08/09/2021 17:50:08:105 Dump ( 97...

Ian_bell by L0 Member
  • 4832 Views
  • 4 replies
  • 0 Likes

Resolved! Strata Cloud Manager Scheduled Report

Hello all, I started a scheduled daily PrismaAccessUsage report in Strata Cloud manager (Prisma Access) a couple years ago. I created a new one but how do I delete/stop the old report that is now going to a Decomm'd email address? Thanks

jsnowden by L1 Bithead
  • 3044 Views
  • 3 replies
  • 0 Likes

Regional Blocking Prisma Access Gateways

Is anyone aware of a way to block access to Prisma Access portal/gateways? We are moving to Prisma Access for VPN access from on-prem. We block all regions to our on prem GP portal VPN via a security policy and allow access to a region as someone travels. Is there a similar option for Prisma access?

whinkle by L0 Member
  • 1747 Views
  • 1 replies
  • 0 Likes
  • 385 Posts
  • 78 Subscriptions
Top Liked Authors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks