Access Your Data Center Using Explicit Proxy (

Strata Cloud Manager

)

Configure a service connection in

Prisma Access

.

Configure DNS settings.

Ensure that the

DESTINATION

Zones

for internet-bound traffic is set to

untrust

instead of

any

.

Failure to perform this step could result in unintended access to your data center.

Select
Manage
Configuration
NGFW and Prisma Access
Configuration Scope
Folders
Prisma Access
Mobile Users Container
Explicit Proxy
Security Services
Security Policy
.
Open a rule for internet-bound traffic.
Ensure
Zones
under
DESTINATION
is set to
untrust
.
Repeat for all of your internet-bound traffic rules.

Enable private application access.

Select
Workflows
Prisma Access Setup
Explicit Proxy
Infrastructure Settings
Enable Private App Access for Explicit Proxy
.

Create security policy rules for the data center resources you want to access.

Select
Manage
Configuration
NGFW and Prisma Access
Configuration Scope
Folders
Prisma Access
Mobile Users Container
Explicit Proxy
Security Services
Security Policy
.
Create security policy rules.

In rules for data center access, ensure

Zones

under

DESTINATION

is set to

trust

.