Prisma Access Agent Administration
  • Prisma Access Agent Administration
  • Prisma Access Agent Documentation
  • All Documentation
>
Configure HIP Data Collection Settings for the Prisma Access Agent (Panorama)
Focus
Download PDF
Focus
  1. Home
  2. Prisma Access Agent
  3. Configure the Prisma Access Agent
  4. Set Up the Prisma Access Agent
  5. Configure HIP Data Collection Settings for the Prisma Access Agent
  6. Configure HIP Data Collection Settings for the Prisma Access Agent (Panorama)
Download PDF
Prisma Access Agent

Configure HIP Data Collection Settings for the Prisma Access Agent (Panorama)

Table of Contents
Define the custom host information profile data that you want Prisma Access Agent to collect for Panorama Managed Prisma Access or NGFW deployments.
Define the custom host information profile (HIP) data that you want Prisma Access Agent to collect for Panorama Managed Prisma Access or NGFW deployments.
  1. Navigate to the Prisma Access Agent setup.
      Expand all
      Collapse all
    • Prisma Access (Managed by Panorama)
    • NGFW (Managed by Panorama)
  2. Select WorkflowsPrisma Access AgentSetup.
  3. Select Prisma Access Agent.
  4. Select an existing agent configuration or Add Agent Settings to create a new configuration.
  5. If you need to create or update an app configuration rule, follow the instructions in Configure Agent Settings for the Prisma Access Agent (NGFW Deployment). Otherwise, go to the next step.
  6. In the Host Information Profile (HIP) section, configure the HIP data collection settings.
    1. Collect HIP Data is selected by default to enable HIP data collection on the endpoints that logged in to the gateway.
    2. Specify the Max Wait Time (in seconds) that the Prisma Access Agent should search for HIP data before submitting the available data. The range is 10-60 seconds; the default is 20 seconds.
    3. Select the Certificate Profile that the gateway uses to match the machine certificate sent by the Prisma Access Agent.
      For NGFW deployments, this certificate profile is the same one that you configured in the Infrastructure settings.
  7. Edit Custom Checks to define any custom data you want to collect from the hosts running this configuration.
    For example, if you have any required applications that are not included in the Vendor or Product lists for creating HIP objects, you can create a custom check to determine whether that application is installed (it has a corresponding Windows registry or Mac plist key) or is currently running (has a corresponding running process):
    • WindowsAdd a check for a particular Registry Key or Registry Value. To restrict data collection to a specific Registry Value, Add and then define the specific registry values.
    • MacAdd a check for a particular Plist key or Key value. To restrict the data collection to specific key values, Add the Key values. Click OK to save the settings.
    • Process ListAdd the processes you want to check for on user endpoints to see if they are running. For example, to determine whether a software application is running, add the name of the executable file to the process list. You can add a process to the Windows tab, the Mac tab, or both.
    Save the custom check settings when you are done.
  8. When you have finished configuring the Prisma Access Agent settings, Create the configuration.

Technical Documentation

Company

Legal Notices

© 2025 Palo Alto Networks, Inc. All rights reserved.