>
    Strata Copilot
    ADEM Data Collection
    Focus
    Download PDF
    Focus
    1. Home
    2. Autonomous DEM
    3. ADEM Data Collection
    Download PDF
    Autonomous DEM

    ADEM Data Collection

    Table of Contents

    ADEM Data Collection

    Learn about the metrics that the ADEM agent collects from the user's workstation in order to provide actionable insights into the workstation, network, path and application performance
    Where Can I Use This?What Do I Need?
    • Prisma Access (Managed by Strata Cloud Manager)
    • Prisma Access (Managed by Panorama)
    • Prisma Access license
    • Autonomous DEM license
    The ADEM agent collects metrics from the user's workstation in order to provide actionable insights into the workstation, network, path and application performance. The metrics collected are:
    User sessions
    • GlobalProtect username
    • GlobalProtect Login / Logout time
    • GlobalProtect status
    • Prisma Access location
    • User geographical local
    • Service provider name
    BIOS
    • Serial number
    Computer
    • Hostname
    • Model
    • Manufacturer
    • Battery
    Network
    • Hostname
    • Network interfaces
    • IPv4 and IPv6 address
    • Public IP Address
    • MAC address
    • Default gateway
    • WiFi Signal Quality
    • WiFi Tx Speed
    • WiFi Rx Speed
    • WiFi Channel
    • WiFi Network SSID
    • WiFi Network BSSID
    VPN Network
    • VPN Interface
    • VPN Gateway ID/Hostname
    • Network interfaces
    Operating System
    • OS type
    • Version
    • OS architecture
    Logical Devices
    • Device ID
    • Device type
    • Media type
    • Size
    • Name
    • Volume name
    • Volume serial number
    • Filesystem count
    • Filesystem storage size
    • Filesystem usage
    CPU
    • Architecture
    • Core count
    • Logical processor count
    • Manufacturer
    • Max clock speed (Except on Apple Silicon)
    • Name
    RAM
    • Memory module capacity (Windows only)
    • Total Capacity
    Synthetic Test Results
    • Network Latency
    • Network Jitter
    • Network Loss
    • DNS resolution times
    • TCP Latency
    • SSL Latency
    • Server Response Time
    Browser-Based Real User Monitoring (RUM) Metrics
    • RDIR - Redirection time (msec)
    • WORKER_START_TO_FETCH_START - inferred for Service Worker Init time (msec)
    • FETCH_START_TO_DOMAIN_LOOKUP_START - inferred for Service worker fetch event + http cache time (msec)
    • DNS - DNS lookup time (msec)
    • TCP - TCP handshake (connect) time (msec)
    • TLS - TLS/SSL handshake time (msec)
    • SRT - Server response time (HTTP latency) (msec)
    • DTT - Data transfer (response) time (msec)
    • DCL - DOM content loaded time (msec)
    • TLT - Total load time (msec)
    • Resource Fetch Time - Time taken to download external resources (CSS, JS, images, fonts, etc.)
    • First Byte Time (from navigation start to response start)
    • HTML Download Time (response end - response start)
    • DOM Building Time (domInteractive - response end)
    • DOM Ready Time (domContentLoadedEventEnd - startTime)
    • Load Event Duration (loadEventEnd - loadEventStart)
    • End User Response Time (loadEventEnd - navigation start)
    • Post Page Load Time (domComplete - loadEventEnd)
    • Visually Complete Time - Estimated time when page is visually complete
    • Navigation Start Time - Absolute start time of navigation
    • Network Response Start Time - Absolute time when response started
    • Network Response End Time - Absolute time when response ended
    • DOM Interactive Time - Absolute time when DOM became interactive
    • DOM Content Loaded End Time - Absolute time when DCL event ended
    • Load Event Start Time - Absolute time when load event started
    • Load Event End Time - Absolute time when load event ended
    • DOM Complete Time - Absolute time when DOM construction completed
    • Latest LCP - Current Largest Contentful Paint time
    • Resource Last End Time - Time when last resource finished loading

    FQDNs Used by ADEM

    The ADEM Client sends the data collected to the ADEM Portal. As such the following FQDNs may need to be whitelisted and/or excluded from SSL decryption:
    • agents.dem.prismaaccess.com
    • updates.dem.prismaaccess.com
    • features.dem.prismaaccess.com
    • agents-prod1-us-west2.dem.prismaaccess.com
    • agents-sg1-asia-southeast1.dem.prismaaccess.com
    • agents-au1-australia-southeast1.dem.prismaaccess.com
    • agents-jp1-asia-northeast1.dem.prismaaccess.com
    • agents-ca1-northamerica-northeast1.dem.prismaaccess.com
    • agents-eu1-europe-west4.dem.prismaaccess.com
    • agents-uk1-europe-west2.dem.prismaaccess.com
    • agents-in1-asia-south1.dem.prismaaccess.com
    • agents-de1-europe-west3.dem.prismaaccess.com
    • agents-ch1-europe-west6.dem.prismaaccess.com
    • agents-fr1-europe-west9.dem.prismaaccess.com

    © 2025 Palo Alto Networks, Inc. All rights reserved.