Features Introduced in Prisma Access 1.2.0

Learn what’s new and exciting in the Cloud Services plugin versions.
The following table describes the new features introduced in the Cloud Services plugin version 1.2.0. For additional information on how to use the new features in this release, refer to the Prisma Access Administrator’s Guide.
Feature
Description
Gateway Selection Improvements
To allow mobile users to use the best gateway for your organization, the following gateway improvements have been implemented:
  • Mobile users now automatically connect more reliably to a Prisma Access gateway that is inside the country from which they are connecting.
  • Mobile users can manually select a gateway (either a gateway in Prisma Access or an on-premise gateway) using the GlobalProtect app on their endpoint.
Status Monitor Improvements
The following improvements have been made in the
Panorama
Cloud Services
Status
area:
  • To better show network status, the fields in the
    Panorama
    Cloud Services
    Status
    Monitor
    window are changed. Click the
    Service Connection
    ,
    Remote Networks
    , or
    Mobile Users
    radio button and hover over any of the circled locations on the map to get a detailed view of the number of service connections, remote network tunnels, or remote users that are configured and their status.
    In addition, the
    Logging Service
    radio button shows the current data retention settings and log quotas for Infrastructure and Audit Logs, Detailed Logs, and Summary Logs.
  • The
    Panorama
    Cloud Services
    Status
    Network Details
    area has been divided into four areas with radio buttons that allow you to see the network details divided by
    Service Infrastructure
    ,
    Service Connection
    ,
    Remote Networks
    , and
    Mobile Users
    .
Internal DNS domains for mobile users increased to 1,024
Prisma Access can now support up to 1,024 internal domains.
FQDNs of all Prisma Access gateways now available
You can now view the full FQDNs of all gateways that are available in Prisma Access. To view the FQDNs, select
Panorama
Cloud Services
Status
Network Details
and click the
Mobile Users
radio button. The FQDNs display in the
Gateways
area.
These gateways replace the primary and secondary gateways.
paloalto-shared-services App-ID released
To make sure that Panorama can communicate with Prisma Access and Cortex Data Lake, configure internet gateway firewall security policies to allow the App-ID
paloalto-shared-services
, in addition to the App-ID
paloalto-logging-service
. The App-ID
paloalto-shared-services
is released as part of content version 8067, and you can review the Customer Resources article Palo Alto Shared Services App-ID for more information. Before the release of this App-ID, administrators needed to add a security policy that contained the
paloalto-logging-service
App-ID,
SSL
, and
web-browsing
on the internet gateway firewall to allow communication between the services, which was less secure than using the new App-ID.

Recommended For You