: Import New SaaS Policy Rule Recommendations on Cloud Managed Prisma Access
Focus
Focus

Import New SaaS Policy Rule Recommendations on Cloud Managed Prisma Access

Table of Contents

Import New SaaS Policy Rule Recommendations on Cloud Managed Prisma Access

Learn how to import new SaaS policy rule recommendations on Cloud Managed Prisma Access to gain visibility into and control of the applications in the rule.
This feature requires the
SaaS Security
add-on license for your platform.
When a SaaS Security administrator authors and submits Security policy rule recommendations, the Web Security administrator can import those rules and the Security administrator can push those rules to gain visibility into and control of the applications in the policy recommendation. Before you begin, learn about the Hub roles that enable administrators to collaborate on SaaS Security Inline.
SaaS policy rule recommendations are based on a combination of applications, users and groups, categories, activities, device posture, and data profiles. The import process automatically creates the necessary objects, including an Application Group for the applications in the SaaS policy rule recommendation. The name of the Application Group is derived from the
Rule Name
that the SaaS Security administrator assigned to the SaaS policy rule recommendation.
For audit purposes, all imports and updates and deletions of existing SaaS policy rules recommendations are logged along with the administrator who took the action. When an import fails, the log indicates the reason for the failure. Web Security Administrators and Security Administrators can view such logs.
  1. From Prisma Access Cloud Management, navigate to
    Web Access Policy
    .
  2. In
    New SaaS Rule Recommendations
    , locate the policy recommendation that you want to import, then
    Actions
    Import
    .
  3. In the
    Import
    dialog and using the best practices outlined in Web Access Policy, select
    Rule Order
    to indicate where to position the new policy in the rulebase, then
    Import
    .
    If you specify a rule name that already exists in the rulebase, the imported rule overwrites the existing rule.
    The policy recommendation that you imported displays as an
    Imported
    policy in
    Imported SaaS Rule Recommendations
    . If your import fails, click the
    Last import failed link
    to understand why the import failed, then resolve the failure.
    SaaSSecurityRecommendation
    tag (
    Web Security
    Objects
    Tags
    ) is added automatically to rule recommendations when you import the rule recommendation. Use this tag to filter for rules that apply to rule recommendations.
  4. Click
    Push Config
    .

Recommended For You