- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
06-05-2025 11:23 AM
Hi everyone,
I have a question and would like to hear if others share the same concern. Why are the Prisma Cloud policies related to monitoring port 22 configured with a severity level of "Low" or "Informational"?
In my opinion, the severity should be higher, since having port 22 open—especially on edge devices—can pose a serious security risk. Unauthorized users could potentially gain access through this port, which could lead to major issues down the line.
Here are some of the policies I’ve found that are marked with low or informational severity:
I’d really appreciate hearing your thoughts on this. Do you think the severity level should be reconsidered?
Thanks!
06-06-2025 08:46 AM
Hello!
I understand your concern. These default policies can be modified based and you can change them to the severity level you see fit for your environment. Prisma Cloud has the following policy severity to focus more on:
Policy severity by definition
Low |
Vulnerability or misconfiguration that is not directly exploitable (requires significant effort to exploit) and has minimal impact. A Low severity alert may be addressed as part of a regular maintenance cycle and do not require immediate attention. |
Informational |
An Informational severity is not a direct security threat, but rather a security best practice or compliance recommendation, detection of service or port status, or a potential weakness that may require attention or monitoring. These alerts have lower severity than the other alerts but still need to be addressed based on customer's compliance requirements. |
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!