Configure Explicit Proxy with SAML (Panorama)
Focus
Focus
Prisma Access

Configure Explicit Proxy with SAML (Panorama)

Table of Contents


Configure Explicit Proxy with SAML (Panorama)

This is how you configure Prisma Access Explicit Proxy with SAML on Panorama.
  1. (Optional) Configure Cloud Identity Engine authentication for Explicit Proxy.
  2. Depending on your Prisma Access version and your dataplane version, configure either a single policy rule or several.
    Version RequirementsConfiguration
    Prisma Access 5.1 or a later version and a dataplane of PAN-OS 10.2.10 or a later version.
    Configure a security policy rule for pre-authentication user traffic.
    1. Select the Explicit_Proxy_Device_Group.
    2. Create an application filter using the Web App tag.
    3. Select PoliciesPre RulesAdd.
    4. Create the rule.
      1. Add the rule.
      2. Give it a descriptive name.
        For example, allow-pre-auth
      3. Under the Application tab, Add the Web App application filter.
      4. Under the Source tab, Add known-user.
    All other Prisma Access and dataplane versions.Configure security policy rules according to your needs and internet gateway security policy best practices.
  3. Commit the configuration.