Focus

Implement User-ID in Security Policies For a Standalone Prisma Access Deployment

Table of Contents

Filter

Expand All | Collapse All

Prisma Access Docs

Administration
Version
- Prisma Access China
- 4.0 & Later
- 3.2 Preferred and Innovation
- 3.1 Preferred and Innovation
- 3.0 Preferred and Innovation
- 2.2 Preferred
Integrations
Incidents & Alerts
Release Notes
Version
- 5.0 Preferred and Innovation
- 4.2 Preferred
- 4.1 Preferred
- 4.0 Preferred
- 3.2 Preferred and Innovation
- 3.1 Preferred and Innovation
- 3.0 Preferred and Innovation
- 2.2 Preferred

Configure an on-premises or VM-Series Firewall as a Master Device

Redistribute User-ID Information Between Prisma Access and On-Premises Firewalls

Implement User-ID in Security Policies For a Standalone Prisma Access Deployment

In a standalone Prisma Access deployment without a Master Device, you can use group-based policy using long-form DN entries in Panorama. Prisma Access uses the DN entries to evaluate the User-ID-based policies you have configured in Panorama.

For example, given a User named

Bob Alice

who works in

for Organization

Hooli

in the United States, a matching security policy may have

ou=IT Staff,O=Hooli,C=US

if the policy is to be applied to all IT staff, or

CN=Bob Alice,ou=IT Staff,O=Hooli,C=US

if the policy is only to be applied to Bob Alice.

Configure an on-premises or VM-Series Firewall as a Master Device

Redistribute User-ID Information Between Prisma Access and On-Premises Firewalls

Prisma Access Docs

Implement User-ID in Security Policies For a Standalone Prisma Access Deployment

Prisma Access Docs

Implement User-ID in Security Policies For a Standalone Prisma Access Deployment

Recommended For You

Activation & Onboarding

SASE

Cloud-Delivered Security Services

Network Security

Endpoints

Visibility & Monitoring

Best Practices

Experts Corner