>
    Configure Explicit Proxy with SAML (Panorama)
    Focus
    Download PDF
    Focus
    1. Home
    2. Prisma Access
    3. Prisma Access Mobile Users
    4. Mobile Users: Explicit Proxy
    5. SAML Authentication for Explicit Proxy
    6. Configure Explicit Proxy with SAML (Panorama)
    Download PDF
    Prisma Access

    Configure Explicit Proxy with SAML (Panorama)

    Table of Contents

    Configure Explicit Proxy with SAML (Panorama)

    This is how you configure Prisma Access Explicit Proxy with SAML on Panorama.
    1. Set up Explicit Proxy.
    2. (Optional) Configure Cloud Identity Engine authentication for Explicit Proxy.
    3. Depending on your Prisma Access version and your dataplane version, configure either a single policy rule or several.
      Version RequirementsConfiguration
      Prisma Access 5.1 or a later version and a dataplane of PAN-OS 10.2.10 or a later version.
      Configure a security policy rule for pre-authentication user traffic.
      1. Select the Explicit_Proxy_Device_Group.
      2. Create an application filter using the Web App tag.
      3. Select PoliciesPre RulesAdd.
      4. Create the rule.
        1. Add the rule.
        2. Give it a descriptive name.
          For example, allow-pre-auth
        3. Under the Application tab, Add the Web App application filter.
        4. Under the Source tab, Add known-user.
      All other Prisma Access and dataplane versions.Configure security policy rules according to your needs and internet gateway security policy best practices.
    4. Commit the configuration.

    © 2024 Palo Alto Networks, Inc. All rights reserved.