New Features - Prisma AIRS - September 2025

Prisma AIRS API allows you to associate multiple applications with a single deployment profile, removing the need to create separate deployment profiles for each application.

With this feature, you can associate up to 20 applications with a single deployment profile, significantly simplifying management while maintaining consistent security policies. When creating a new application, you can either select an existing activated deployment profile or activate a new one before establishing the association. This flexibility helps you organize your applications based on shared security requirements or business functions.

Note: All applications associated with a single deployment profile consume the daily API calls quota tied to that deployment profile. When setting this value in CSP, consider how many applications (max allowed is 20) you plan to associate with this deployment profile.

You can easily modify which deployment profile an application uses through the application edit view, allowing you to adapt as your security needs evolve. The application detail and list views clearly display which deployment profile each application is linked to, providing transparency and helping you maintain proper governance. This capability is fully supported through both Strata Cloud Manager and API endpoints, enabling you to programmatically manage multiple applications per deployment profile for automation and integration scenarios.

The Prisma AIRS Model Context Protocol (MCP) server is a standalone remote server that addresses significant integration challenges in securing agentic AI applications with easy deployment. You can use this service to protect your AI applications without the complex infrastructure dependencies or extensive code changes that traditional security solutions require.

The Prisma AIRS MCP server in the Palo Alto Networks cloud environment serves as a centralized security gateway for AI agent interactions. The server validates all tool invocations through the MCP and provides real-time Threat Detection on tool inputs, outputs, and tool descriptions or schemas. The Prisma AIRS MCP server empowers you within the MCP ecosystem by delivering security-focused building blocks for AI and copilot workflows. Its universal, easy-to-integrate interface works with any MCP client, enabling AI agents to translate plain-language user requests into secure, powerful workflows.

When you implement the MCP server as a tool, you only need to specify the protocol type, URL, and API key in your configuration file to automatically scan all external MCP server calls for vulnerabilities. This minimal setup enables you to detect various threats including prompt injection, MCP context poisoning, and exposed credentials without disrupting your development workflow. The service is valuable for low-code or no-code platforms where inserting security between the AI agent and its tool calls would otherwise be challenging. You can protect your AI applications with features such as AI Application Protection, AI Model Protection, and AI Data Protection, each designed to safeguard specific aspects of your AI workflows.

The Prisma AIRS MCP server integrates with your existing API infrastructure, enabling you to view comprehensive scan logs through familiar interfaces. This integration ensures you maintain visibility into security events while simplifying your security operations.