Advanced DNS Security Powered by Precision AI®
Manage Connection Sources (Prisma Access Agent)
Table of Contents
Manage Connection Sources (Prisma Access Agent)
If your Prisma Access deployment provides secure access to your organization's
network resources for remote users through Prisma Access Agent, a predefined
connection source named Prisma Access Agent is present in the
connection sources list. This connection source cannot be modified or removed, with
the exception of the redefining the associated DNS Security profile. Additionally,
Prisma Access Agent connections do not need to be verified, as identification and
authentication are managed internally through Strata Cloud Manager.
Prisma Access Agent support for Advanced DNS Security Resolver operates as a
fall-back option when the tunnel connection that provides secure access for mobile
users fails or is not available. This allows you to retain DNS resolution and query
and response inspection from the Advanced DNS Security Resolver service, regardless
of your connection status.
Unlike connection sources that are managed directly through the Advanced DNS Security
Resolver, Prisma Access Agent users and user groups that you want fallback support
for are defined within the Prisma Access Agent > Agent Settings > Match
Criteria. Keep in mind, this is part of a larger configuration process to
Configure Advanced DNS Security Resolver for
Prisma Access Agent.
- Log in to the Strata Cloud Manager on the hub.Select and select Prisma Access Agent.
![]()
Select a DNS Security Profile with the appropriately configured security policies for the connection source.![]()
Click Save when finished.Configure the Prisma Access Agent Connectivity Method located in your Forwarding Profile to enable ADNS cloud-based DNS resolution and real-time inspection. For more information, refer to step 2 of: Configure Advanced DNS Security Resolver for Prisma Access Agent.The ADNS connection option can only be enabled when Tunnel is enabled first.
