>
    Strata Copilot
    Create a Granular Data Profile on Strata Cloud Manager
    Focus
    Download PDF
    Focus
    1. Home
    2. Enterprise DLP
    3. Administration
    4. Configure Enterprise DLP
    5. Data Profiles
    6. Create a Granular Data Profile
    7. Create a Granular Data Profile on Strata Cloud Manager
    Download PDF
    Enterprise DLP

    Create a Granular Data Profile on Strata Cloud Manager

    Table of Contents

    Create a Granular Data Profile on Strata Cloud Manager

    Create a granular Enterprise Data Loss Prevention (E-DLP) data profile to apply differentiated inline traffic inspection and response actions within a single Security policy rule on Strata Cloud Manager.
    1. Log in to Strata Cloud Manager.
    2. (Optional) Create your custom data profiles on Strata Cloud Manager.
      You can create a data profile that contains multiple data profiles using both predefined data profiles and custom data profiles you create.
    3. Select ConfigurationData Loss PreventionData ProfilesAdd Data Profile and create a Granular Data Profile.
    4. Enter a descriptive Name for the granular data profile and click Next to continue.
    5. (Prisma Browser) Enable Local Detection to make the granular data profile available only for Prisma Browser.
      If you enabled Local Detection, you can only add other data profiles with Local Detection enabled.
      You can't use a data profile with Local Detection enabled for NGFW or Prisma Access (Managed by Panorama or Strata Cloud Manager).
    6. Select the Data Profiles you want to add the granular data profile.
      You can search for or filter the list of available data profiles you want to add. Enterprise DLP displays All Types of data profiles by default, or you can filter for all Predefined or Custom classic or advanced. Enterprise DLP does not support adding a granular or nested data profile to a granular data profile.
      Use the Data Profile Preview to review the granular data profile configuration. Enterprise DLP displays how many pattern match criteria are added to each data profile and whether the data profile is a Predefined or Custom data profile. Expand each data profile to review all pattern match criteria added to the data profile.
      Granular data profiles support only an OR operator for all added data profiles.
      Click Next to continue.
    7. Review the Summary of the granular data profile.
      Edit the Basic Information or Data Profiles to modify the granular data profile configuration if needed. Save the granular data profile if you don't need to make any further edits.
      Use the Data Profile Preview to review the granular data profile configuration. Granular data profiles support only an OR operator for all added data profiles. Expand each data profile to review all associated data patterns.
    8. expand the Actions column to test the granular data profile match efficacy.
    9. Select ConfigurationNGFW and Prisma Access and Push Config.
      Enterprise DLP requires you push the Strata Cloud Manager configuration to the enforcement points using the Enterprise DLP when you add or update a granular data profile.
    10. Modify the DLP rule or add the data profile to a Data Control Rule
      • NGFW and Prisma Access TenantsModify a DLP rule to define the type of traffic to inspect, the impacted file types and apps, the action Enterprise DLP takes when sensitive data is detected, log severity, and more for the data profile match criteria. Enterprise DLP automatically creates a DLP rule with an identical name as the data profile from which it was created.
      • Prisma BrowserCreate or edit a Data Control rule to prevent exfiltration of sensitive data for specific apps, website classifications, or URLs.

    © 2025 Palo Alto Networks, Inc. All rights reserved.