Focus

Network Security

Your Web Access Policies at a Glance

Table of Contents

Web Security: How It Works (Cloud Management)

Your Web Access Policies at a Glance

Where Can I Use This?	What Do I Need?
NGFW (Cloud Managed) NGFW (PAN-OS & Panorama Managed) `Prisma Access (Cloud Management)` `Prisma Access (Panorama Managed)`	Check for any license or role requirements for the products you're using: `Prisma Access` license or AIOps for NGFW license Panorama CloudConnector Plugin (except for Cloud Managed

Before you begin, talk to your Account Administrator and make sure that you've been assigned the role of Web Security Admin. Once you’re a Web Security Administrator, select

Manage

Configuration

NGFW and Prisma Access

Overview

Web Security

, and

Enable

Web Security.

Be sure you've selected one of following Configuration Scopes:

GlobalProtect

Explicit Proxy

Remote Networks

One of your NGFW
s

After you've enabled Web Security, go to

Manage

Configuration

NGFW and Prisma Access

Security Services

Web Security

, and configure

Web Access Policy

to set restrictions for internet access and SaaS applications.

You can also pin Web Security to the sidebar for easy access.

A) Policies

Configure your web access policies on this tab.

B) Policy Recommendations

See policy recommendations from SaaS security administrators on this tab.

C) Policy Name

Shows the name of the policy. Select the policy name in this column to see an advanced view of the policy.

D) Logs

Select the

icon to see the policy in the Log Viewer. You can also select

Incidents and Alerts

Log Viewer

to view your logs.

E) State

Shows whether the policy is enabled or disabled.

F) Tags

Shows any tags associated with the policy.

G) Source Location

Shows which locations the policy affects.

H) User

Shows which users the policy affects.

I) Search

Use keywords to look for a policy.

J) Show / Hide columns

Show or hide columns to improve visibility.

K) Delete

Remove a policy.

L) Clone

Duplicate a policy and modify it slightly to create a policy that’s similar to the one you’re duplicating.

M) Enable

Change the state of a policy to enabled.

N) Disable

Change the state of a policy to disabled.

O) Move

Move a policy up or down to change the order of enforcement.

P) Add Policy

Create a new custom web access policy.

Q) Description

Shows the description of the policy.

R) Advanced Settings

Shows additional security settings configured for the policy.

S) URL Categories / Web Applications

Shows URL categories and Web Applications you’ve blocked or allowed. Hover your cursor over an allowed URL Category or Web Application to see additional information.

T) Custom Web Access Policies

Shows custom web access policies you’ve created.

U) Default Web Access Policies

Shows the web access policies available by default.

Global Web Access

Enforces your web application and URL category access restrictions for all users.

Global Catch All Policy

Sets the default action for all outbound traffic to any Web Application or URL Category to allow. It’s a good practice to you leave the Global Catch All Policy enabled. Otherwise, any traffic not matching your Web Security rules is enforced according to the policies defined under

Configuration

NGFW and Prisma Access

Security Services

Security Policy

Web Security: How It Works (Cloud Management)

Web Security Policy Migration