Focus

Advanced URL Filtering

Set Up Credential Phishing Prevention

Table of Contents

Configure Credential Detection with the Windows User-ID Agent

Set Up Credential Phishing Prevention

Detect attempts to submit corporate credentials to web pages and allow, alert, block, or require users to acknowledge the dangers of phishing before they can continue

Where can I use this?	What do I need?
Prisma Access PAN-OS	Advanced URL Filtering license (or a legacy URL filtering license) Notes: Legacy URL filtering licenses are discontinued, but active legacy licenses are still supported. Prisma Access licenses usually include Advanced URL Filtering capabilities.

After you have decided which of the methods to detect corporate credential submissions you want to use, take the following steps to enable the firewall to detect when users submit corporate credentials to web pages and either alert on this action, block the credential submission, or require users to acknowledge the dangers of phishing before continuing with the submission.

Before enabling credential phishing prevention, verify that the Primary Username that you configure on the firewall uses the sAMAccountName attribute. Credential phishing prevention does not support alternate attributes.

Prisma Access

PAN-OS

Configure Credential Detection with the Windows User-ID Agent

URL Filtering Response Pages