Panorama Features
Focus
Focus

Panorama Features

Table of Contents

Panorama Features

What new Panorama™ management server features are in PAN-OS 11.2?

Secure Custom AI Models on Private Endpoints

Aug 2025
  • Introduced in PAN-OS 11.2.8
You can extend AI security inspection to LLMs hosted on privately managed endpoints or input/output schemas that are not publicly known. By enabling this support within your AI security profile, all traffic that matches a security policy rule is forwarded to the AI cloud service for threat inspection, regardless of whether the model is a well-known public service or a custom-built private one. This ensures comprehensive security for your entire AI ecosystem.
The new AI security profile inspects and secures the AI traffic between AI applications and LLM models passing through Prisma AIRS: Network intercept that are managed by Strata Cloud Manager or Panorama. This profile protects against threats such as prompt injections and sensitive data leakage.

Panorama AI Security Log Enhancements

Aug 2025
  • Introduced in PAN-OS 11.2.8
Gain enhanced visibility into AI-specific threats through an additional AI security report that displays comprehensive AI security threat logs forwarded by Prisma AIRS Network intercept. This gives you enhanced visibility into AI model protection, AI application protection, and AI data protection threats detected based on your AI security profile configurations. You can also filter logs by the `ai-security` threat type when configuring log forwarding profiles or building custom reports, enabling targeted analysis and streamlined security operations for AI-specific threats.

Prisma AIRS AI Runtime Support in Panorama

Dec 2024
  • Introduced in PAN-OS 11.2.5
PAN-OS 11.2.5 introduces Prisma AIRS AI Runtime: Network intercept deployment and management support on Panorama, enhancing your ability to protect AI applications, AI models, and AI data.
The key features include:
  • AI Security Profiles: Create and manage AI security profiles directly from Panorama to configure specific protection settings for your cloud network architecture.
  • Traffic Objects: Define traffic objects with specific cloud assets and map them to zones to enforce security policy rules on AI traffic.
  • AI Security Logging: View Prisma AIRS AI Runtime: Network intercept firewall-generated logs forwarded to Panorama under Monitor Threat. The AI security threat logs are identified with the type: ai-security.

Zero Touch Provisioning (ZTP) Onboarding Enhancements

May 2024
  • Introduced in PAN-OS 11.2.
Zero Touch Provisioning (ZTP) streamlines the initial deployment of NGFW by minimizing the manual administrative intervention required to connect the device to your network. However, administrators still often need to activate applicable licenses and manually push content updates after the firewall establishes a connection to the Panorama® management server. PAN-OS 11.2.0 introduces enhancements to the ZTP experience that automate these critical post-connection steps. When you add ZTP NGFW to the Panorama, your security administrator now add the NGFW authorization code during the initial configuration phase. This enables Panorama to automatically activate the necessary licenses on the ZTP NGFW immediately upon its first connection.
Additionally, security administrators can configure Panorama to instantly push the latest downloaded dynamic content updates when the NGFW successfully onboards in the template stack generated by the ZTP plugin. After a successful connection to Panorama, Panorama activates the applicable licenses associated with the authorization code, pushes the latest predefined device group and template stack configuration, and installs the latest downloaded dynamic content version. These automations greatly reduce the administrative burden associated with large-scale NGFW deployments and ensure every new NGFW is compliant and up-to-date immediately.