Prisma Access
Create a Snippet
Table of Contents
Create a Snippet
Create a snippet to group configurations of the
Prisma Access Agent
that you
can quickly push to your deployments.Where Can I Use This? | What Do I Need? |
|---|---|
|
You can create a snippet to group the configurations of
Prisma Access Agents
that you can quickly push to your deployments.
Snippets are used to standardize a common base configuration for a set of
project-based deployments, allowing you to quickly onboard new devices with a known
good configuration and reducing the time required to onboard a new device.After you create the snippet, you will associate the snippet to a scope, assign a
user to the scope, and grant the user the Project Admin role. The user can then log
in as the Project Admin and use the snippet to manage the project settings for the
Prisma Access Agent
. The Project Admin can only change the Prisma Access Agent
settings for the snippets that they are assigned to.To create a snippet, complete the following steps:
- Log in toStrata Cloud Manageras the Superuser.
- Select .
- Select and expand the Configuration Scope to view theSnippets.
![]()
- Add Snippetand enter the following details:
- Enter aNamefor the snippet.
- (Optional) Enter aDescriptionfor the snippet.
- (Optional) Assign one or moreLabels.You can select an existing label or create a new label by typing the label you wanted to create.
- To ensure that object names are unique across a snippet,Add prefix to object namesis enabled by default.Choose whether toAutogenerate a random prefix or selectManualand add your ownPrefix Value. The prefix value can be alphanumeric and have a maximum of six characters.
![]()
The prefix will have the formatxxxxxx-. When you add an object, Strata Cloud Manager will prepopulate the object name with the prefix. - Createthe snippet.After you create the snippet, you're in the Configuration Scope for the snippet. All configurations you create while in the snippet scope occurs only for the snippet.
- Associate the snippet to theAccess Agentfolder.
- In the Overview page of your snippet, select theSnippet Associationssettings.
- SelectAccess Agentfrom theConfig trees.
![]()
- Click theXto close the Snippet Associations window.Access Agentappears in the list of Snippet Associations.
![]()
- If you have not done so already, create an identity for the user who will be managing projects and assign the Project Admin Push role to the user.
- From Strata Cloud Manager, select .
![]()
- SelectAdd Identity.
- Enter theIdentity Addressfor the user who will be the project administrator and clickNext.
![]()
- Select and select theProject Admin Pushrole for the user.
![]()
- ClickSubmit.
- Create a management scope for the snippet and assign a user to that scope.
- Select .
- Create New Scope.
- Enter aNamefor the scope and view theSnippets.
- Associate the snippet to the scope. Select the snippet that you created andAddit.
![]()
- In the Scope Objects,Assign Usersto the scope that you created for your snippet.
![]()
- Assign a user to the scope by selecting a user from the list and giving the user theProject Adminrole.
![]()
- Closethe window.
- Push the configuration.
- Select .
- Select theAll Adminsadmin scope and select .
After the push config operation is completed, the snippet is created and the roles are associated with the snippet.The assigned user (project admin) can now log in toStrata Cloud Managerand configure project-specific using the snippet that you created. The user can view other scopes that they are not assigned to, but they cannot interact with them, such as changing any configurations.
