Set Up Integration for Root Tenants
Table of Contents
Expand all | Collapse all
- Strata Multitenant Cloud Manager
- First Time Setup
-
- Monitor Status of Services through the ASC Support View
- Monitor Performance of Tunnel Status through the ASC Support View
- Monitor Performance of Auto Scaling through the ASC Support View
- Monitor Performance of Throughput through the ASC Support View
- Monitor Performance of the System through the ASC Support View
- View Licenses through the ASC Partner Portal
- View Status of Upgrades through the ASC Support View
- Manage Multitenant Reports
Set Up Integration for Root Tenants
Contains instructions to setup the root tenant after setting up the app in a multi
tenant setup.
Ensure that you have the following:
- Root tenant service account with admin privileges.
- TSG ID, client ID, and client secret that were generated when creating the service account.
After setting up the app and creating a root tenant user, the following must be
configured for every root tenant.
This setup is required
only for multi-tenant customers.
- Create an Integration UserTo ensure secure access and proper data exchange, you must create a dedicated integration user in your ServiceNow instance. This user serves as the trusted account that the ServiceNow Prisma SASE application uses to authenticate and communicate with the Prisma SASE platform.To add an integration user, perform the following:
- Log in to the ServiceNow instance as the root tenant user.
- Create a new integration user.
- Select OrganizationUsersNew .
- Specify the Name, User ID, and Email.
- Search and select the Company. The company name matches the domain or tenant name. Each company represents a tenant organization and ensures the segregation of data and processes.
- Submit to create a new user.
- Assign roles.
- Search for the newly added user by name.
- Select the user.
- Select RolesEdit.
- Search and add the following roles:
- x_paan_prisma_sase.isr_incident_user
- x_paan_prisma_sase.app_admin
- Save the user.
Configure Prisma SASE ConnectionsConfigure a new Prisma SASE credential and connection specific to the root tenant.- Select Prisma SASE APP for ServiceNowApp SetupBasic Settings.
- Select Configure Prisma SASE Connections.
- Create Credentials.Credentials are details of the root tenant service account created in the Strata Cloud Manager. This credential will be used by the ServiceNow app to connect securely with Prisma SASE.
- Select Create Credentials ConfigureNew.
- Specify the TSG ID, Client ID, and Client Secret.
- Submit the configuration.
- Mark as Complete.
- Create Connections.
- Select Create Connection Alias ConfigureNewHTTP(s) Connection.
- Specify the following:
- Name-Connection name.
- Credential and Connection alias - Search and select the credential and connection alias that you created in the previous steps.
- Connection URL - Prisma SASE API gateway URL.
- Submit the configuration.
- Mark as Complete.
Configure ServiceNow CredentialsSet up the integration user as a ServiceNow credential to enable Prisma SASE to establish a secure connection with your ServiceNow instance.- Select Configure ServiceNow Credentials ConfigureNew.
- Specify the Name.
- Specify the integration username and password created in Step 1 in the ServiceNow Instance Username and ServiceNow Instance Password fields.
- Submit the configuration.
- Mark as Complete.
Next Step - Continue with Creation of Notification Profile or Log Forwarding Profile