Wildcard FQDNs for Simplified ZTNA Connector Policy Management
Focus
Focus
What's New in the NetSec Platform

Wildcard FQDNs for Simplified ZTNA Connector Policy Management

Table of Contents

Wildcard FQDNs for Simplified ZTNA Connector Policy Management

Users can now configure security policy rules based on the wildcard application FQDN.
Previously, security policy configuration for ZTNA Connector was protocol-dependent. Although we supported wildcard Fully Qualified Domain Names (FQDNs), policies were restricted strictly to the HTTP and HTTPS protocols. This limitation created unnecessary complexity and administrative overhead for security teams managing large, diverse application portfolios across Prisma® Access platform.
This enhancement significantly improves operational agility by removing those protocol constraints. By configuring a single, unified security policy based on a wildcard application FQDN, that policy is automatically applied to all matching discovered applications. This reduces the need for numerous individual policy definitions. Crucially, when new applications matching wildcard FQDN are discovered, traffic can pass securely without requiring the time-consuming process of committing changes.
With this capability:
  • You can configure a security policy based on the wildcard application FQDN.
  • The same security policy is applied to all the discovered applications that share the same wildcard FQDN.
  • When new applications that match the wildcard FQDN are discovered, traffic can pass without requiring a new commit.