Deploy Prisma Access Agents to Android Endpoints Using Microsoft Intune
. By leveraging Microsoft Intune, administrators can efficiently push the Prisma
Access Agent app to all managed Android devices.
| Where Can I Use This? | What Do I Need? |
|---|
- Prisma Access (Managed by Strata Cloud Manager)
- Prisma Access (Managed by Panorama)
- NGFW (Managed by Panorama)
|
- Android 10 and later version
|
Microsoft Intune is a cloud-based endpoint management solution that enables you to manage
mobile endpoints from a central console. Using Microsoft Intune, you can deploy the
Prisma Access Agent app to managed endpoints that are enrolled with Microsoft
Intune.
Using Microsoft Intune, you can deploy Prisma Access Agent to the Android endpoints with
the following connect methods:
- Always-On
In an Always-On configuration, Prisma Access
Agent automatically connects as soon as end users log in. You can optionally
enable Lockdown Mode to enforce all network traffic through the Prisma Access
Agent and block traffic that does not go through the Prisma Access
Agent.
- On-Demand
In an on-demand configuration, end users must
manually connect Prisma Access Agent through the application. Traffic is routed
through the Prisma Access Agent app only after the end users initiate and
establish the connection.
- Per-App
In a per-app configuration, you can specify the
managed apps that can route traffic through Prisma Access Agent when connected.
If using an allowlist, only the specified apps will be routed through Prisma
Access Agent. If using a blocklist, all traffic will be routed through Prisma
Access Agent except for the specified apps.
Prisma Access Agent works both with Android devices with a work profile and
fully-managed Android devices.
