SCM

SCM

1. Log in to Strata Cloud Manager.
2. Navigate to Manage → Configuration → NGFW and Prisma Access → Security Services → AI Security.
3. Select the Configuration Scope as Global or limit it to your AI security profile.
4. Select AI Security → Add Profile.

   
5. Enter a Name and a Description.
6. Add Model Group for customized protections. See Create Model Groups for Customized Protections.

   For example, a model group with URL categorization and prompt injection alert settings is attached to the following security profile for a target AI model. You can attach a security policy as a zone or a DAG:

   • For zone-based security, follow the use case on how to Create Traffic Objects for Zone-Based Security using specific clusters to monitor the ingress and east-west traffic. Attach this zone to a security policy rule to enforce policies on the AI traffic sourced from this zone and the traffic objects within this zone.
   • For protecting the source AI applications, use Dynamic Address Groups in Policy and reference these DAGs in the security policy rule.
7. In the Advanced Settings, under Latency:

   • Max Inline Latency: Set the maximum allowed latency for inline threat detection. The latency range is between 1-300 seconds.
   • Inline Timeout Action: Specify the action to take if inline threat detection exceeds the Max Inline Latency:
     • Allow
     • Alert (Report threats asynchronously)
     • Block
8. Create.