Focus

Strata Cloud Manager

Cloud Identity Engine

Table of Contents

Cloud Identity Engine

Learn to configure Cloud Identity Engine authentication profiles.

Where Can I Use This?	What Do I Need?
Prisma Access (Managed by Strata Cloud Manager)	`Prisma Access` license

The Cloud Identity Engine (CIE) provides both user identification and user authentication for mobile users in a Prisma Access—Explicit Proxy deployment. The Cloud Identity Engine integrates with the Explicit Proxy Authentication Cache Service (ACS) and uses SAML identity providers (IdPs) to provide authentication for Explicit Proxy mobile users.

Configure an authentication profile to authenticate users with the Cloud Identity Engine.

The SAML/CIE authentication method is displayed only if the Cloud Authentication Service (CAS) is enabled. If the CIE authentication or CAS is not supported on your Prisma Access tenant, then it shows only the SAML authentication method.

Before you begin:

Review the Explicit Proxy guidelines.

Set up an authentication profile in the Cloud Identity Engine.

Go to

Manage

Configuration

Identity Services

Authentication

, set the configuration scope to

Explicit Proxy

and

Add Profile

under

Authentication Profiles

Select the

Authentication Method

Cloud Identity Engine

Enter a unique

Profile Name

Select the Cloud Identity Engine authentication

Profile

you configured in the Cloud Identity Engine.

Save

your changes.

Strata Cloud Manager Docs

Cloud Identity Engine

Strata Cloud Manager Docs

Cloud Identity Engine

Recommended For You

Next-Generation Firewalls

SASE

Cloud-Delivered Security Services

Network Security

Agents & Agentless

Endpoints

Visibility & Monitoring

Best Practices

Experts Corner