>
    Strata Copilot
    Verify Standard VPN or Prisma Access Endpoints
    Focus
    Download PDF
    Focus
    1. Home
    2. Prisma SD-WAN
    3. Prisma SD-WAN Administrator’s Guide
    4. Prisma SD-WAN SASE Easy Onboarding
    5. Verify Standard VPN or Prisma Access Endpoints
    Download PDF
    Prisma SD-WAN

    Verify Standard VPN or Prisma Access Endpoints

    Table of Contents

    Verify Standard VPN or Prisma Access Endpoints

    Learn how to verify the standard VPN/ Prisma Access endpoints in Prisma SD-WAN. With the native integration of Prisma SD-WAN with Prisma Access, Standard Endpoints for all Prisma Access regions will be created automatically.
    Where Can I Use This?What Do I Need?
    • Prisma SD-WAN (Managed by Strata Cloud Manager)
    • Prisma SD-WAN
      • Prisma SD-WAN
      • Prisma SD-WAN AppFabric deployed at one or more locations.
      • Physical and/or virtual ION devices running software versions 5.6.X or higher.
    • Prisma Access Cloud Managed
      • Prisma Access with Aggregate Bandwidth; the bandwidth licensing mode must be enabled per compute location on the Prisma Access Cloud Managed portal.
      • Identification of the IPSec Termination Nodes within Prisma Access for connectivity.
    • Ensure that you have Prisma Access (Cloud Managed) and Prisma SD-WAN in the same TSG.
    With the native integration of Prisma SD-WAN with Prisma Access, Standard Endpoints for all Prisma Access regions will be created automatically. In addition, each of the endpoints will be configured with a liveliness probe to the Prisma Access Firewall monitor address. The monitor will run an ICMP check every ten (10) seconds and mark the tunnel as failed after three (3) consecutive failures. The only action required will be to add these Endpoints to Groups and Domains.
    1. Select ConfigurationResourcesService & DC GroupsManage Endpoints.
    2. On the Endpoints screen, select Standard VPN from the drop-down.
    By default, the check box is selected for endpoints created through Easy Onboarding. This check box informs the Site Configuration and Overlay Connections page on the Prisma SD-WAN web interface that VPNs with this endpoint connect to Prisma Access.
    The Prisma Access check box for an endpoint informs the Site Configuration and Overlay Connections page on the Prisma SD-WAN web interface that VPNs with this endpoint connect to Prisma Access. The Prisma Access check box is automatically selected for endpoints created through the new Easy Onboarding workflow. For manually created endpoints, ensure to select the check box for Prisma Access.

    View and Monitor Tunnels to Prisma Access

    You can view the available Prisma Access tunnels for a site by selecting the site and then clicking Configuration. View the number of Prisma Access tunnels in the Connectivity section.
    On the Configuration page, click Prisma Access to view the connected Prisma Access endpoints. You can view the connected endpoints by selecting a site, clicking Overlay Connections and then selecting the overlay connection from the drop-down.

    Related CLIs

    © 2026 Palo Alto Networks, Inc. All rights reserved.