New Features in February 2025
Focus
Focus
Strata Cloud Manager

New Features in February 2025

Table of Contents

New Features in February 2025

Here are the new features available in Strata Cloud Manager in February 2025.
Here are the latest new features introduced on Strata Cloud Manager. Features listed here include some feature highlights for the products supported with Strata Cloud Manager. For the full list of new features supported for a product you're using with Strata Cloud Manager, see the release notes for that product.

Case Creation Enhancements in Strata Copilot

February 21, 2025
Supported on Strata Cloud Manager
The case creation workflow in Strata Copilot is now restructured for improved efficiency, now following a more logical progression.
When opening a case, Strata Copilot first collects core information such as product, hostname, issue description, and severity. Depending on the nature of the issue, Strata Copilot can prompt for additional details. Once Strata Copilot gathers the necessary information, it runs an automated analysis using category-specific playbooks, including a dedicated one for commit issues. Based on this analysis, Strata Copilot suggests remediation actions if a relevant playbook is identified. As you progress, you will see real-time updates during playbook execution. If these suggestions don't resolve your issue, you can then proceed to open your support case.
The system preserves your case creation state for one hour, allowing you to resume without losing progress if you encounter interruptions. This streamlined process ensures all required information is collected upfront, enabling more accurate analysis and potentially faster resolution of your issue.

Strata Cloud Manager: New Best Practice Assessment Checks and Custom Checks

February 14, 2025
Supported on Strata Cloud Manager for:
Strata Cloud Manager introduces the following new checks and features:
  • Custom checks supports a wide range of configuration objects, including authentication profiles, device setup, security profiles, GlobalProtect configurations, network objects, and policy rules.
  • Inline configuration analysis supports new configuration objects, including addresses, application groups, dynamic user groups, HIP profiles, tags, and variables.
  • Custom checks supports multi-objects and the len operator for greater flexibility.
  • Custom checks now validate security policies for applications within application filters, enhancing policy coverage and security.
  • Enables cloning of predefined checks.
  • Both Best Practices Assessment (BPA) and custom checks support web security policies.
Strata Cloud Manager lets you validate your configuration against predefined Best Practices and custom checks you create based on the needs of your organization. As you make changes to your service routes, connection settings, allowed services, and administrative access settings for the management and auxiliary interfaces for your firewalls, Strata Cloud Manager gives you assessment results inline so you can take immediate corrective action when necessary. This eliminates problems that misalignments with best practices can introduce, such as conflicts and security gaps.
Inline checks let you:
  • Gauge the effectiveness of, assess the impact of, and validate changes you make to your configuration using inline assessment results.
  • Prioritize and perform remediations based on the recommendations from the inline assessment.

Strata Cloud Manager: Unified Policy Management for SaaS Security and Internet Access Policy Rules

February 14, 2025
Supported on Strata Cloud Manager for:
  • Prisma Access (Managed by Strata Cloud Manager)
  • NGFW (Managed by Strata Cloud Manager)
The Simplified Security Policy Recommendations for SaaS Security Inline enhances your ability to manage and enforce SaaS app Security policy rules efficiently for NGFW and Prisma Access managed by Strata Cloud Manager. You can now create, manage, and enforce SaaS Security Inline policy rules using the predefined SAAS-Inline-Pol-Recommendations snippet to enforce consistent SaaS app security.
Alternatively, you can now create an Internet Access rule instead of going through the typical SaaS Security Inline policy rule recommendation workflow. As a SaaS Security administrator, creating an Internet Access rule allows you to gain full control over policy rule enforcement and rule ordering. The unified policy framework simplifies your policy rule creation experience, allowing you to enforce consistent SaaS app security regardless of the enforcement point, eliminate policy implementation delay, and reduce the risk of misconfigurations. This streamlined workflow enables you to fully utilize the SaaS Security Inline capabilities, achieving a stronger security posture for your SaaS environment. Simplified Security Policy Recommendations for SaaS Security Inline allows you to more effectively secure your SaaS apps, reduce administrative overhead, and gain clearer visibility into your SaaS Security posture. The Simplified Security Policy Recommendations for SaaS Security Inline is valuable if you manage complex SaaS environments, require granular control over Security policy rules , or need to rapidly respond to evolving security requirements in your cloud infrastructure.

Prisma Access: New Location Support

February, 2025
New locations:
  • Israel
  • Indonesia
Supported on:
  • Prisma Access (Managed by Strata Cloud Manager)
  • Prisma Access (Managed by Panorama)
You can deploy Prisma Access in the locations of your choosing, based on data location preferences and where you have the most users. Prisma Access provides over 100 locations worldwide, so that your users have an experience that’s tailored to their locales. All Prisma Access locations are mapped to a security compute location based on optimized performance and latency. This means that the traffic in certain countries will be directed to that defined compute location.

Visibility Into Prisma Access Configuration Push Status

February 14, 2025
Supported on Prisma Access (Managed by Strata Cloud Manager)
Prisma Access provides enhanced visibility into your configuration pushes in Prisma Access (Managed by Strata Cloud Manager) deployments, allowing you to better monitor and troubleshoot configuration pushes across your network. The status of In Progress jobs is improved, providing you with real-time insights into the progress of configuration pushes across different regions and service types. You can view detailed information about each push, including specific error messages or warnings, enabling quick identification and resolution of issues. This granular visibility is useful when managing large-scale deployments or troubleshooting complex configuration changes.
By using the configuration status messages, you can ensure smoother configuration rollouts, reduce downtime, and maintain better control over your Prisma Access environment. The feature's intuitive interface provides a familiar and user-friendly experience, making it easier for you to manage your Prisma Access configurations effectively.

Ability to Clone GlobalProtect App Settings and Tunnel Settings

February 14, 2025
Supported on Prisma Access (Managed by Strata Cloud Manager)
You can clone existing GlobalProtect tunnel settings and app settings. This enhancement facilitates the creation of additional tunnel and app settings if you need to support split tunneling or multiple connection settings.

Prisma Access Browser Support in Strata Copilot

February 6, 2025
Supported on Strata Cloud Manager for Prisma Access Browser
Prisma Access Browser enables comprehensive event querying and analysis through Strata Copilot, providing visibility into user activity, bandwidth usage patterns, and potential security risks. With Prisma Access Browser analytics, you can:
  • Query the top interacted websites to understand browsing behavior.
  • Analyze active device distribution across your network.
  • Identify peak usage hours for resource planning.
  • List the most active users for monitoring and compliance.
  • Track file transfers to detect unauthorized data movement.
  • Monitor cloud storage service interactions for security oversight.
Prisma Access Browser supports customizable time ranges for both real-time and historical data analysis. Additionally, predefined queries help streamline common data analysis tasks, improving efficiency.
Additional data sets continue to be added.

New AI-Powered Workflow for Troubleshooting Application Access

February 6, 2025
Supported on Strata Cloud Manager
Strata Copilot introduces an enhanced workflow for troubleshooting application access in the Log Viewer. This new feature streamlines how you explore Strata Logging Service logs related to access issues. When querying about a user or an application name, Strata Copilot now generates dynamic, context-aware recommendations based on your current view. These suggestions include workflows to investigate policy denials for specific users and applications within defined time frames, as well as options to grant access when necessary. This AI-driven enhancement adapts to your unique needs, making log exploration for access-related issues more intuitive and efficient, ultimately simplifying the investigation and resolution of application access challenges.