Link your Cloud NGFW resource with Strata Cloud Manager (SCM) for policy management.
| Where Can I Use This? | What Do I Need? |
|---|
|
|
- Cloud NGFW subscription
- Palo Alto Networks Customer Support Account (CSP)
- AWS Marketplace account
- User role (either tenant or administrator)
|
You can integrate your Cloud NGFW resource with
Strata Cloud Manager (SCM) for policy management. With
this integration, you can now use a single Strata Cloud Manager to centrally manage
a shared set of security rules on Cloud NGFW resources alongside your physical and
virtual firewall appliances. You can also manage all aspects of shared policy
configurations, gain comprehensive visibility with actionable insights, and generate
reports on traffic patterns or security incidents of your Cloud NGFW resources, all
from a single console.
Important Considerations:
When using SCM for Cloud NGFW policy management, consider the
following:
X-forwarded functionality isn't supported in an SCM policy
management for your Cloud NGFW resource.
Cloud certificate isn't supported.
DLP isn't supported.
DAGs isn't supported.
When configuring security rules for your SCM-managed Cloud NGFW
resource, you must specify ANY for the security rule. However,
from/to zone appears as the data Zone in the Strata Logging
Service.
