Home
EN
Location
Documentation Home
Palo Alto Networks
Support
Live Community
Knowledge Base
>
Clear
Configure Explicit Proxy with SAML (Panorama)
Updated on
Tue Jun 25 00:32:14 UTC 2024
Focus
Download PDF
Updated on
Tue Jun 25 00:32:14 UTC 2024
Focus
Home
Prisma Access
Prisma Access Mobile Users
Mobile Users: Explicit Proxy
SAML Authentication for Explicit Proxy
Configure Explicit Proxy with SAML (Panorama)
Download PDF
Prisma Access
Configure Explicit Proxy with SAML (Panorama)
Table of Contents
Filter
Expand All
|
Collapse All
Prisma Access Docs
Administration
Version
Prisma Access China
4.0 & Later
3.2 Preferred and Innovation
3.1 Preferred and Innovation
3.0 Preferred and Innovation
2.2 Preferred
Integrations
Incidents & Alerts
Release Notes
Version
5.1 Preferred and Innovation
5.0 Preferred and Innovation
4.2 Preferred
4.1 Preferred
4.0 Preferred
3.2 Preferred and Innovation
3.1 Preferred and Innovation
3.0 Preferred and Innovation
2.2 Preferred
Configure Explicit Proxy with SAML (Panorama)
This is how you configure
Prisma Access
Explicit Proxy with SAML on
Panorama
.
Set up Explicit Proxy.
(
Optional
) Configure
Cloud Identity Engine
authentication for Explicit Proxy.
Depending on your
Prisma Access
version and your
dataplane
version, configure either a single policy rule or several.
Version Requirements
Configuration
Prisma Access
5.1 or a later version and a dataplane of PAN-OS 10.2.10 or a later version.
Configure a
security policy rule
for pre-authentication user traffic.
Select the
Explicit_Proxy_Device_Group
.
Create an
application filter
using the
Web App
tag.
Select
Policies
Pre Rules
Add
.
Create the rule.
Add
the rule.
Give it a descriptive name.
For example,
allow-pre-auth
Under the
Application
tab,
Add
the
Web App
application filter.
Under the
Source
tab,
Add
known-user
.
All other
Prisma Access
and dataplane versions.
Configure
security policy rules
according to your needs and
internet gateway security policy best practices
.
Commit
the configuration.
Recommended For You