>
    Create HIP Notifications for the Prisma Access Agent
    Focus
    Download PDF
    Focus
    1. Home
    2. Prisma Access Agent
    3. Prisma Access Agent Administration
    4. Configure the Prisma Access Agent
    5. Configure HIP Notifications for the Prisma Access Agent
    6. Create HIP Notifications for the Prisma Access Agent
    Download PDF
    Prisma Access Agent

    Create HIP Notifications for the Prisma Access Agent

    Table of Contents

    Create HIP Notifications for the Prisma Access Agent

    Learn how to define the notification messages that your end users see when a security rule with a HIP Profile is enforced.
    Where Can I Use This?What Do I Need?
    • Prisma Access (Managed by Strata Cloud Manager)
    • Check the prerequisites for the deployment you're using
    • Prisma Access Agent version: 25.1.0.14
    • macOS 14 and later or Windows 10 version 2024 and later desktop devices
    • Contact your Palo Alto Networks account representative to activate the Prisma Access Agent feature
    When the HIP report matches the HIP profile or object, a corresponding HIP notification is sent. You can define the notification messages that end users see.
    Deciding whether to display a notification message when the user's configuration matches or does not match a HIP Profile in the policy depends largely on your policy and what a HIP match (or nonmatch) means for the user. That is, does a match mean they are granted full access to your network resources, or does it mean they have limited access due to a noncompliance issue?
    For example, suppose you create a HIP Profile that matches if the required corporate antivirus and antispyware software patches are not installed. You could create a HIP notification message for users who match the HIP Profile, informing them that they need to install the patches. Alternatively, if your HIP Profile matches when those same patches are installed, you might want to create the message for users who do not match the profile.
    1. From Strata Cloud Manager, select WorkflowsPrisma Access SetupAccess AgentPrisma Access Agent.
    2. Edit the Global Agent Settings.
    3. Select HIP Notifications and click Add.
    4. Select the HIP Profile to which this message applies from the Host Information drop-down.
      If there are no HIP Profiles, you need to create a HIP Profile.
    5. Depending on whether you want to display the message when the corresponding HIP Profile is matched or not matched, select Match Message or Not Match Message. In some cases, you might want to create messages for both a match and a nonmatch, depending on what objects you are matching and what your objectives are for the policy.
    6. Select Enable Message, and then select whether you want to display the message as a System Tray Balloon or a Pop Up Message.
    7. Enter your Message text and then click Add.
    8. Repeat this procedure for each message that you want to define.

    © 2025 Palo Alto Networks, Inc. All rights reserved.