>
    Strata Copilot
    Roaming Profiles: Ensuring a Consistent Browser Experience
    Focus
    Download PDF
    Focus
    1. Home
    2. Prisma Browser
    3. Roaming Profiles: Ensuring a Consistent Browser Experience
    Download PDF
    Prisma Browser

    Roaming Profiles: Ensuring a Consistent Browser Experience

    Table of Contents

    Roaming Profiles: Ensuring a Consistent Browser Experience

    Set up roaming profiles
    Roaming profiles are a fundamental Windows feature that delivers a consistent and personalized computing environment, allowing a user's browser data to follow them across various domain-joined computers. This mechanism is network-centric, providing data persistence without needing cloud synchronization or active internet access, which is especially beneficial in high-security or air-gapped corporate and educational settings.Profile Components
    A roaming profile synchronizes essential user-specific browser data, ensuring continuity regardless of the physical machine used:
    • Bookmarks and Favorites: Web links and folder structures are preserved.
    • Browser Settings: Custom configurations, including the default homepage, display options, and security settings, remain consistent.
    • Saved Passwords: Encrypted login credentials are securely synchronized for easy access.
    • Extensions: Installed browser add-ons are maintained to ensure customized functionality.
    • History: Core browsing history is typically included, though caching may be managed separately for optimal performance.

    The Local Network Synchronization Mechanism

    The process by which a roaming profile enables user mobility relies on local network server interaction:
    1. Login: Upon signing into any Windows domain machine, the system identifies the user's roaming profile path on the central network server.
    2. Download: The complete copy of the user's profile data is transferred from the server to the local computer's hard drive.
    3. Usage: The user works with and modifies this local copy of the data.
    4. Logoff: When the session ends, the operating system copies all changes (e.g., new bookmarks, setting modifications) back to the central network server, ensuring the profile is up-to-date for the next login.

    Prisma Browser Implementation

    Prisma Browser leverages this feature by storing its user-specific data in a portable file named profile.pb. This file is located within the Windows roaming profile folder. When a user logs onto a new machine, Windows synchronizes the entire folder, including the profile.pb file, which allows Prisma Browser to seamlessly restore the user's complete data.
    For detailed information on setting up Windows Roaming Profiles, see Folder Redirection and Roaming User Profiles overview. For step-by-step directions, see Deploy Roaming User Profiles.
    Prerequisites
    To use roaming profiles, the following conditions must be met:
    • Support is limited to Windows environments only
    • A Windows domain environment with Roaming User Profiles must be present
    • Prisma Browser must be deployed either via MDM or local installation
    • Users must sign in using an Active Directory account.
    Prisma Browser SetupEnable Roaming Profiles
    Set the following registry key on every machine to enable the feature:
    **Registry Path****Value Name****Value Data**
    Software\\Policies\\Palo Alto Networks\\PrismaAccessBrowserRoamingProfileSupportEnabled1 (DWORD)
    Change Roaming Profile Location (Optional)1
    The user's roaming profile is stored in a file named profile.pb. By default, this file is located in %APPDATA%\Palo Alto Networks\PrismaAccessBrowser\User Data\Default\profile.pb within the Windows Roaming Profile directory.
    To specify a non-default location for profile.pb, configure the RoamingProfileLocation registry key. Any supported path variables can be used.
    If you set the RoamingProfileLocation policy, you must avoid setting the UserDataDir
    or
    DiskCacheDir
    policies to the same directory. Conflicting settings can interfere with roaming profiles and negate the feature's benefits.
    Alternatively, you can direct RoamingProfileLocation to a network share (e.g., \\Server\Profiles\${user_name}). In this configuration, Prisma Browser reads and writes profile.pb directly to the network, Windows Roaming User Profiles is not required.
    Example setup - What Syncs
    ** Syncs**** Does Not Sync**
    BookmarksCookies
    Saved passwordsActive sessions
    Autofill dataCached files
    Browser settingsDownloads
    ExtensionsTemporary data
    Browsing history (partial)
    Important Limitations
    **Limitation****Details**
    **No simultaneous sessions**Users cannot run Prisma Browser on two machines at the same time. The profile file is locked during use.
    **Mutually exclusive with cloud sync**Roaming profiles and browser cloud sync cannot be used together. Choose one.
    **Single profile recommended**Multiple browser profiles may not map correctly across machines.
    **Large profiles slow login**Thousands of bookmarks/extensions increase Windows login time.

    © 2026 Palo Alto Networks, Inc. All rights reserved.