Configure Security Checks And Other Posture Settings
Focus
Focus
Next-Generation Firewall

Configure Security Checks And Other Posture Settings

Table of Contents

Configure Security Checks And Other Posture Settings

Learn about the security checks that
AIOps for NGFW
performs.
Where Can I Use This?
What Do I Need?
  • NGFW (Cloud Managed)
  • NGFW (PAN-OS or Panorama Managed)
  • VM-Series, funded with Software NGFW Credits
  • AIOps for NGFW Premium license (use the Strata Cloud Manager app)
In
Posture Settings
, you can customize security posture checks for your deployment to maximize relevant recommendations using the features below.
Go to
Manage
Security Posture
Settings - Panorama Managed
.
  • Security Checks
    List of the best practice checks that AIOps for NGFW uses to evaluate your configuration. The configuration of firewalls and Panorama is compared to Palo Alto Networks best practice checks to assess the security posture of your devices and to generate security alerts. You can see a list of the best practice checks that are used to evaluate your configuration.
    Here, you can:
    1. Set the severity level for checks to identify the checks that are the most critical to your deployment.
    2. Temporarily disable checks.
      If you choose to disable a check, you can specify how long it will remain disabled and leave a comment explaining the reason for disabling it.
    3. Set the response when a check fails.
      • Alert
        —Raises an alert for the failed check.
      • Fail Commit
        — Panorama blocks commits if the check fails so that you can stop potential misconfigurations before they enter your deployment.
  • Zone to Role Mapping
    Map the zones in NGFWs to roles to get customized recommendations.
  • Role to Security Service Mapping
    Manage the security services needed for traffic between zones and roles in all NGFWs.

Recommended For You