Focus

Prisma Access

Use Privileged Remote Access

Table of Contents

Filter

Expand All | Collapse All

Prisma Access Docs

Release Notes
Select a Document
- 6.1 Preferred and Innovation
- 6.0 Preferred and Innovation
- 5.2 Preferred and Innovation
- 5.1 Preferred and Innovation
- 5.0 Preferred and Innovation
- 4.2 Preferred
- 4.1 Preferred
- 4.0 Preferred
- 3.2 Preferred and Innovation
Activation & Onboarding
Administration
Select a Document
- 4.0 & Later
- Prisma Access China
Integrations
Incidents & Alerts

Manage Privileged Remote Access Connections

Add a User-Defined App

Use Privileged Remote Access

Learn how your users can access and use the Privileged Remote Access portal.

Where Can I Use This?	What Do I Need?
Privileged Remote Access (PRA) portal	A web browser that supports HTML5 PRA credentials

Your users will log in to the Privileged Remote Access (PRA) portal to access their PRA apps. You will need to send the PRA portal URL to your users. You can obtain the portal URL from the PRA Portal page.

PRA automatically creates the portal when you enable PRA and configure the portal domain name (either a subdomain or a custom domain). All activities performed in the PRA portal take place after the user authenticates and logs in to the portal. For authentication, PRA uses the Cloud Identity Engine.

Your user can perform the following actions in the PRA portal:

Log in to the PRA portal—To access the PRA portal, your end users must access the portal URL that you sent to them. Whenever they visit the PRA portal, they are first authenticated using the Cloud Identity Engine.
The following is the login sequence that takes place:
1. The user visits the portal by entering the portal URL in their web browser. For example: example.panwpra.com
2. The users are authenticated using the Cloud Identity Engine.
View active connections—The user can view the list of apps they are actively connected to. They can view the following data:
- Connection Name—The name of the app they are connected to
- App Type—The connection protocol used (RDP, SSH, or VNC)
- Started At—When they last connected to the app
- Last Active—Whether the connection is still active by showing when they last interacted with the app
- User Agent—The browser used to access the app
Access an app from the Admin-Defined Apps or User-Defined Apps sections—The user can select Actions next to the app that they want to connect to.

The app appears in a separate window that your user can interact with. If you did not add the app with login credentials for the target machine, the user will be prompted to enter their credentials.
The user can also group the admin-defined apps by selecting Group ByApp Groups or Group ByApp Type. To cancel the grouping, select Group ByNone.
To group the user-defined apps by app type, select Group ByApp Type. To cancel the grouping, select Group ByNone.
Disconnect an app connection—The user can click Disconnect in a connected app window, or select an active connection from the PRA portal and click Delete Selected.
Manually add an app—If you allow user-defined apps, the user can manually add an app.
Transfer files—If the associated PRA profile allows, the user can upload or download files from the remote app.
Log out—The user can log out of the PRA portal by clicking the user icon and selecting Log out.

Manage Privileged Remote Access Connections

Add a User-Defined App

Prisma Access Docs

Use Privileged Remote Access

Prisma Access Docs

Use Privileged Remote Access

Activation and Onboarding

Next-Generation Firewalls

SASE

Cloud-Delivered Security Services

Network Security

Endpoints

Visibility & Monitoring

FedRAMP

Hardware Reference

Hardware Quick Start Guides

Virtual ION Deployment

3rd Party Integrations

Best Practices

Experts Corner