Associate Directory Sync Instances with Palo Alto Networks Apps

Associate your Directory Sync instance with other Palo Alto Networks apps to allow them to reference your Active Directory data.
By associating your Directory Sync Service instances with other Palo Alto Networks apps such as Traps or Magnifier, you can allow these apps and services to access your Active Directory information for reporting and policy enforcement. You can associate the Directory Sync instance with another app during activation or with an existing app at any time.

Associate During Activation

  1. Using your Auth Code, activate the Palo Alto Networks cloud app you want to associate with the Directory Sync Service instance.
    associate-instance-step-1.png
  2. Enter the information required to activate the application, such as an Instance Name and a Region, which will vary depending on the app.
  3. Select the Directory Sync instance you want to associate with the app.
    associate-instance-step-2.png
    Only Directory Sync instances that are compatible with the Palo Alto Networks cloud application are displayed in the drop-down list. For example, a Directory Sync instance assigned to the US region would be compatible with another Palo Alto Networks cloud service app assigned to the US region. If the Directory Sync field is not available, the Palo Alto Networks cloud services app you selected does not support Directory Sync Service.
  4. Agree and Activate the app.

Associate with an Existing App

  1. Log in to the Cortex hub, click Settings ( edit-button.PNG ) then Manage Apps.
  2. Select the app you want to associate with the Directory Sync instance.
  3. Select the Directory Sync instance you want to associate with the app and click OK.
    ds-associate-with-existing-app.png
    Only Directory Sync instances that are compatible with the Palo Alto Networks cloud application are displayed in the drop-down list. For example, a Directory Sync instance assigned to the US region would be compatible with another Palo Alto Networks cloud service app assigned to the US region. If the Directory Sync field is not available, the Palo Alto Networks cloud services app you selected does not support Directory Sync Service.
    After you associate the app, the Directory Sync instance name displays in the Directory Sync column in the Cortex hub (SettingsManage Apps).
    ds-csp-settings-associated-traps.png

Related Documentation