Enable ZTNA Connector (Strata Cloud Manager)

1. Configure the IP address blocks that Prisma Access will use internally to route traffic to the ZTNA Connector and the private apps you onboard.

   • Select WorkflowsPrisma Access SetupPrisma AccessInfrastructure Settings.

   • Add ZTNA Connectors Application IP Blocks.
     You can add a single Application IP Block, or multiple blocks depending on your deployment. You can also Advertise Application IP blocks to Remote Networks to provide remote network access.
     Use RFC 1918 or RFC 6598 addresses. You can specify an RFC 1918 address pool during ZTNA Connector setup instead of RFC 6598. However, you can change the address pool type back to RFC 6598 after you specify RFC 1918 only for application blocks. For connector IP address blocks, you can change the address pool type only when you delete all the connectors and connector groups.
   • Add ZTNA Connectors Connector IP Blocks that Prisma Access will use internally to route traffic between mobile users, remote networks and the connector VMs in your data centers.
     Configure the connector IP address blocks carefully. Once you have added them, you can only update or delete them after you delete all the existing connectors or connector groups.
     You can add a single Connector IP Block, or multiple blocks depending on your deployment.

   • Click Save to save the IP address block configuration and then Commit and push the configuration.
2. Launch ZTNA Connector from Strata Cloud Manager.

   • Select WorkflowsZTNA Connector.
   • Prisma Access begins setting up the infrastructure for the ZTNA Connector. This may take a few minutes.

   • When onboarding finishes, the ZTNA Connector Overview displays.