>
    Strata Copilot
    Integrate Microsoft Foundry
    Focus
    Download PDF
    Focus
    1. Home
    2. Prisma AIRS
    3. Administration
    4. Integrate Microsoft Foundry
    Download PDF
    Prisma AIRS

    Integrate Microsoft Foundry

    Table of Contents

    Integrate Microsoft Foundry

    Learn about Prisma AIRS AI Runtime Microsoft Foundry integration.
    Where Can I Use This?What Do I Need?
    • Prisma AIRS AI Runtime Security
    Prisma AIRS AI Runtime integrates with Microsoft Foundry. Microsoft Foundry represents a unified Azure platform-as-a-service offering for enterprise AI operations, model builders and application development. It unifies agents, models and tools under a single management grouping while supporting built-in enterprise readiness capabilities. Refer to the Microsoft documentation for more information.
    With this integration integration, Prisma AIRS natively scans prompts and model responses in Microsoft Foundry using the Prisma AIRS API. This integration delivers real-time threat detection as developers build, test and deploy AI applications, providing instant protection for:
    • prompt injections to block attempts to manipulate AI behavior through malicious prompts.
    • sensitive data loss to prevent PII, credentials and confidential information from being exposed.
    • malicious code and URLS to detect and stop harmful code or dangerous links in outputs.
    • toxic content to identify and block offensive or inappropriate responses.
    • custom topics that define and filter specific content categories relevant to your organizational policies.
    • agents and MCP to inspect LLM assistant output for risks like sensitive data and malicious code that could be sent to downstream agent tools.
    Prerequisites
    To leverage this functionality, you’ll need to:
    • Purchase software NGFW credits. Refer to the activation and onboarding page for more information.
    • create a Prisma AIRS deployment profile.
    • create an app and API key for Microsoft Foundry.
    • create and configure to link the profile newly created API key.
      You can optionally create a service account for the Strata Cloud Manager (SCM) tenant to receive a client ID and client credential key for OAuth token generation.
    To integrate Prisma AIRS with Microsoft Foundry you need to configure Strata Cloud Manager (SCM) first, then access the Microsoft application to complete the configuration.

    Configure Prisma AIRS for Microsoft Foundry Integration using SCM

    To configure Prisma AIRS for Microsoft Foundry integration using SCM:
    1. Ensure that you have purchased the appropriate software NGFW credits.
    2. Create a deployment profile for the AI Runtime API where the credits are allocated.
    3. Associate the deployment profile with a specific SCM tenant on the Palo Alto Networks Hub; this process links the deployment profile to your SCM tenant.
    4. Activate the deployment profile in SCM; this process generates a new API key; you’ll use this key when configuring the Microsoft Foundry integration.
    5. Create an API security profile (as part of deployment profile you created in Step 3) to indicate which security features you want to enable in Microsoft Foundry.
    6. Set the default profile (in Step 5) for any future requests using that API key.
      Setting the default profile simplifies future requests if a profile name is not explicitly provided during the onboarding process.
    7. Optionally create a service account for the SCM tenant to receive a client ID and client credential key for OAuth token generation. This process (part of the onboarding and activating a cloud account) allows for token-based authentication instead of using only the API key.
      After you obtain the necessary credentials and generate the API key, configure the integration between Prisma AIRS and Microsoft Foundry.

    Configure Microsoft Foundry for Prisma AIRS Integration

    With the appropriate credentials and the generated API key you can configure the integration between Prisma AIRS and Azure AI Foundry.
    1. Log into the Microsoft Foundry site.
    2. Select Guardrails > Integrations.
    3. In the Add an Integration page, click Add.
    4. In Step 1 Configuration, use the drop-down menu to select Palo Alto Networks. Enter the API key (see step 4 in the section Configure Prisma AIRS for Microsoft Foundry using SCM).
    5. Specify the Guardrails you want to use.
    6. Click Add Integration.
    7. In the Guardrails Integration page, verify that the information is correct, then click Add Integration.
      You can edit the integration using the pencil icon located in the right hand corner of the page next to the name of the integration (for example, Palo Alto Networks Prisma AIRS).
      After completing the integration Azure AI Foundry sends prompts and model responses to Prisma AIRS. These prompts and model responses are run against the security profile linked to the API key. As a result, verdicts are sent back to Azure (block or allow), which are then enforced by Azure AI Foundry framework.

    © 2026 Palo Alto Networks, Inc. All rights reserved.