Strata Copilot
    Common Services: Identity and Access
    : Common Services: Identity and Access Management Release Updates
    Focus
    Download PDF
    Focus
    1. Home
    2. Common Services
    3. Common Services: Identity and Access
    4. Common Services: Identity and Access Management Release Updates
    Download PDF

    Common Services: Identity and Access

    Common Services: Identity and Access Management Release Updates

    Table of Contents

    Common Services: Identity and Access Management Release Updates

    Learn about the latest features and known issues related to Common Services: Identity and Access Management.
    Here’s where you can learn about the latest features related to Common Services: Identity and Access Management and the known issues the team is working on to improve your experience.

    Release Updates: Known Issues

    These are the issues we’re currently working on. If no issues are listed, then there are no outstanding known issues.

    Release Updates: What's New

    Here’s what’s new in Common Services: Identity and Access Management. You can also check what’s new for NetSec, Subscription and Tenant Management, Device Associations, and Strata Multitenant Cloud Manager.

    What's New in October 2024

    The following new items were released in October 2024.

    Browser Role Deprecation

    The Identity and Access predefined Browser role is no longer required and access to essential Strata Cloud Manager features is now automatically enabled. To complete identity and access creation for new users, simply add the required predefined or custom roles.
    For users who already have a predefined or custom role assigned for All Apps & Services, access will be uninterrupted. For users who had only the predefined Browser role assigned for All Apps & Services, the access policy will be removed; you will need to create a new role and assign a predefined or custom role for All Apps & Services or any other app service.

    Tabs for Custom and Predefined Roles

    The Identity and Access Roles page is redesigned with tabs to separate the predefined and custom roles. This changes the navigation. To add custom roles, for example, you navigate to Identity & AccessRolesCustom RolesAdd Custom Role.

    Table Data Download

    You can now download the Identity and Access access management table data in CSV format. The download icon is available at Identity & AccessAccess Management. The downloaded list displays the same titles that you see in the table: Type,Display Name,Identity,Applications,Role,Scope,Inherited From.

    What's new in April 2024

    The following new items were released in April 2024.

    Enhancements to View Only Administrator Role

    In Identity and Access Management, the View Only Administrator role is extended to include support for the Strata Logging Service application.

    What's new in October 2023

    The following new items were released in October 2023.
    New Features in October 2023
    PAN resource name update
    In PAN Resource Names, the app_id property field contains updated application IDs.

    What's new in September 2023

    The following new items were released in September 2023.
    New Features in September 2023
    Assign roles redesign
    You can now assign multiple roles to one application, and the web interface displays more clearly which roles are inherited and can't be deleted.

    What's new in July 2023

    The following new items were released in July 2023.
    New Features in July 2023
    Custom role support for Common Services
    When managing custom roles through Identity & Access/Access ManagementRolesAdd Custom Role, all menu items related to Common Services are now supported.

    What's new in June 2023

    The following new items were released in June 2023.
    New Features in June 2023
    Strata Cloud ManagerDepending on your licensed products, and if you have received information about the migration of your tenant, you might begin to manage and monitor your network and security infrastructure through Strata Cloud Manager. You still use the same Common Services for identity and access management, but you access it through Settings.

    What's new in April 2023

    The following new items were released in April 2023.
    New Features in April 2023
    Tenant mapping
    You can now map tenants for authorization and update tenant mapping for authorization to grant authorization to your users by passing the login information through your Security Assertion Markup Language (SAML) provider.
    Role names
    The following role names have been revised:
    • from MSP Superuser to Multitenant Superuser
    • from MSP IAM Administrator to Multitenant IAM Administrator
    • from MT Manage User to Multitenant Manage User
    • from MT Monitor User to Multitenant Monitor User

    What's new in March 2023

    The following new items were released in March 2023.
    New Features in March 2023
    Clone roles
    If you require more granular access control than the predefined roles provide, you can now create a new role by cloning a role from an existing predefined role or an existing custom role, and making changes to it.
    Custom role API permissions Custom role permissions are now split between Web UI and API for even more granular permissions.
    Supported apps per role
    About roles and permissions is updated to show which apps can be used with each predefined role.

    What’s new in February 2023

    The following new items were released in February 2023.
    New Features in February 2023
    Posture Security roles
    You can now assign the Posture Security Administrator or Posture Security View only roles for managing access to standalone Saas Security Posture Management (SSPM).
    Custom roles
    You can now add custom roles and modify custom roles if you require more granular access control for your users and service groups than the predefined roles provide.

    What’s New in December 2022

    The following new items were released in December 2022.
    New Features in December 2022
    Third Party Identity Provider Integrations
    You can now manage third party provider integrations so that users of different enterprises or domains can use the same digital identity to access all their applications.
    ADEM Tier 1 Support role
    You can now assign the ADEM Tier 1 Support role to third party helpdesk employees for access to specific incident remediation workflows in Prisma Access Autonomous Digital Experience Management (ADEM).

    What’s New in November 2022

    The following new items were released in November 2022.
    New Features in November 2022
    Browser role
    You can now assign the Browser role for user access to only the common services features required by Palo Alto Networks UI.

    © 2025 Palo Alto Networks, Inc. All rights reserved.