Focus

Next-Generation Firewall

Enable User- and Group-Based Policy

Table of Contents

Filter

Expand All | Collapse All

Next-Generation Firewall Docs

Getting Started
Administration
Networking
Quick Start
Reference
Incidents & Alerts
Release Notes
Select a Document
- PAN-OS 12.1
- PAN-OS 11.2
- PAN-OS 11.1
- PAN-OS 11.0 (EoL)
- PAN-OS 10.2
- PAN-OS 10.1
- PAN-OS 10.0 (EoL)
- PAN-OS 9.1 (EoL)
- PAN-OS 9.0 (EoL)
- PAN-OS 8.1 (EoL)
Help
Select a Document
- PAN-OS 12.1
- PAN-OS 11.2
- PAN-OS 11.1
- PAN-OS 10.2
- PAN-OS 10.1

Send User Mappings to User-ID Using the XML API

Enable Policy for Users with Multiple Accounts

Enable User- and Group-Based Policy

After you Enable User-ID, you will be able to configure Security Policy that applies to specific users and groups. User-based policy controls can also include application information (including which category and subcategory it belongs in, its underlying technology, or what the application characteristics are). You can define policy rules to safely enable applications based on users or groups of users, in either outbound or inbound directions.

Examples of user-based policies include:

Enable only the IT department to use tools such as SSH, telnet, and FTP on standard ports.
Allow the Help Desk Services group to use Slack.
Allow all users to read Facebook, but block the use of Facebook apps, and restrict posting to employees in marketing.

Send User Mappings to User-ID Using the XML API

Enable Policy for Users with Multiple Accounts

Next-Generation Firewall Docs

Enable User- and Group-Based Policy

Next-Generation Firewall Docs

Enable User- and Group-Based Policy

Activation and Onboarding

Next-Generation Firewalls

SASE

Cloud-Delivered Security Services

Network Security

Endpoints

Visibility & Monitoring

FedRAMP

Hardware Reference

Hardware Quick Start Guides

Virtual ION Deployment

3rd Party Integrations

Best Practices

Experts Corner