append end tokens to URLs in an EDL or a custom URL category
you use URLs in custom URL categories or external dynamic lists
(EDLs) and do not append an ending token, it is possible to allow
more URLs than you intended. For example, entering example.com as
a matching URL instead of example.com/ would also match example.com.website.info
or example.com.br.Prisma Access can automatically set an ending
token to URLs in EDLs or custom URL categories so that, if you enter
example.com, Prisma Access treats it as it would treat example.com/ and
only match that URL.
the option to
Append End Token to Entries
can customize these settings for each deployment type (mobile users,
remote networks, or service connections).
Create a URL Access Management profile.
On the URL Access Management dashboard,
continue to specify web access settings:
displays the URL categories and lists for which
you can define web access and usage policy. By default, the
User Credential Submission
for all categories are set to
For each URL category, configure
so that users can submit credentials only
to sites in specified URL categories.
Safe Search Enforcement
enforce strict safe search filtering.
Log Container Page Only
log only those URLs that match the content type that is specified.
HTTP Header Logging
visibility into the attributes in the HTTP request sent to a server.
Advanced URL Inline Categorization
enable and configure real-time web page analysis and manage URL
Enable local Inline Categorization
real-time analysis of URL traffic using machine learning models,
exploits from entering your network.
Enable cloud Inline Categorization
real-time analysis of URLs by forwarding suspicious web page contents
to the cloud for supplemental analysis, using machine learning based
detectors that complement the analysis engines used by local inline
You can define URL
specific web sites to exclude from inline machine learning actions.
Best practice checks are built-in to the profile
to give you a live evaluation of your configuration.
After you’ve finished enabling a profile, you can examine
profile usage to see if any security policy rules are referencing
Apply the URL Access Management profile to a Security
A URL Access Management profile is only active when it’s
included in a profile group that a Security policy rule references.