Download Files for Evidence Analysis on Panorama
Download files that match your Enterprise Data Loss Prevention (DLP) data filtering
profiles on the Panorama™ management server and Prisma Access (Panorama Managed).
After you successfully Set Up Cloud Storage to Save Evidence for Panorama to store files
that match your Enterprise Data Loss Prevention (DLP) data filtering profiles, you
can download to your local device any files scanned by the DLP cloud service to
allow for in-depth investigation.
Files scanned by the DLP cloud service while the DLP app is disconnected from your cloud storage
are not stored in your cloud storage. This means that all impacted files are not
available for download. However, all snippet data is preserved and can still be
viewed on the DLP app on the hub.
- Set Up Cloud Storage to Save Evidence for Panorama if not already set up.The files available to download are only files scanned by the DLP cloud service after you successfully connected the DLP app on the hub to your cloud storage.
- Log in to the DLP app on the hub.If you do not already have access to the DLP app on the hub, see the hub Getting Started Guide. Only Superusers can access the hub.
- SelectReportsand enter a Report ID toSearch.
- For Prisma Access (Panorama Managed) users leveraging Enterprise DLP, log in to the Amazon AWS console and access the cloud storage you connected. The object Name is the Report ID.
- For Panorama users, log in to the Panorama web interface and select andFilterthe data filtering logs by entering( subtype eq dlp ). Locate theReport IDcolumn to obtain the Report ID for the report you want to download.
- Review report summary and click the download button to download the file to your device.
