About gkannan

  Policy rules that are added to support changing and evolving business needs result in too many policies which are outdated, redundant and overly permissive. These rules allow applications that aren’t in use in your network which can lead to more vulnerable attack surfaces and introduce security gaps. Prisma Access automates the process of identifying these overly permissive rules and replaces them with more specific rules that only allow the applications that are actually in use in your network.   The ML powered Policy Optimizer identifies rules that are allowing “any” application traffic based on the log activity. The Optimizer auto-generates recommendations for the rule to be optimized. The recommended rules explicitly allow only the applications that have been detected in your network in the last 90 days. Customers can review and accept the recommended rules to proceed with the optimization. The original rule is listed below the recommended rules, for monitoring and review and removing the rule when appropriate.               Click on these links to learn more :   https://docs.paloaltonetworks.com/prisma/prisma-access/prisma-access-cloud-managed-admin/create-prisma-access-policy/policy-optimizer.html   https://docs.paloaltonetworks.com/prisma/prisma-access/prisma-access-cloud-managed-release-notes/release-information/new-features.html#id3b92cdc5-cfc4-4462-94b5-211a31b68d64       ... View more

  Since February 2021, Prisma Access Cloud Management allows users to customize and manage security profiles all in one place via profile dashboards. Each security profile has its own dashboard, allowing users to access all profile features and a consolidated view of the profile configuration.   The Prisma Access profile dashboard allows users to centrally manage profile overrides, gain visibility into profile and override usage, as well as access to Palo Alto Network’s threat data (including content releases, the Threat Vault, and PAN-DB) to check coverage and take action.    The profile dashboard also includes an overview of the  Best Practice Assessment  (best practice scores, overview of passed and failed checks), inline checks, and a comprehensive view of NIST security controls and CIS security controls. The configuration is continually assessed against Palo Alto Networks’ best practice recommendations, enabling users to take prompt action to improve their security posture.   Here are the key features of security profiles available with Prisma Access Cloud Management: Profile configuration Advanced features  Global settings Release updates Access to threat vault and PAN-DB Central Management for overrides, EDLs, custom signatures, custom URL categories, response pages  Best Practice Assessment overview with detailed view Inline best practices checks   Another key feature is the use of profile groups, i.e. a set of profiles that can be treated as a unit and include one of each profile type. Security rules reference profile groups instead of individual profiles.          To learn more, please visit Palo Alto Networks' pages on  Prisma Access Security Profiles and Security Profiles and Best Practice checks.   ... View more