Prisma™ Cloud Administrator's Guide
    : Add an Alibaba Cloud Account on Prisma Cloud
    Focus
    Download PDF
    Focus
    1. Home
    2. Prisma
    3. Prisma Cloud
    4. Prisma™ Cloud Administrator's Guide
    5. Connect Your Cloud Platform to Prisma Cloud
    6. Onboard Your Alibaba Cloud Account
    7. Add an Alibaba Cloud Account on Prisma Cloud
    Download PDF

    Prisma™ Cloud Administrator's Guide

    Add an Alibaba Cloud Account on Prisma Cloud

    Table of Contents

    Add an Alibaba Cloud Account on Prisma Cloud

    Add your Alibaba cloud account to Prisma Cloud to start monitoring the resources in the account.
    After creating a RAM role with permissions that allow Prisma Cloud programmatic access to your cloud resources on Alibaba Cloud, the next step is to add the account you want to monitor for changes on the cloud infrastructure.
    1. If you have not already activated your account, check your email for the welcome to Prisma Cloud email that includes your username, and create a new password to log in.
      On first-time login to Prisma Cloud in the Alibaba Mainland China region, you must accept the EULA. When you click the EULA, a new page displays where you can review the content. As a temporary work around, to
      Agree and Submit
       you must refresh the page and log in again with your credentials.
    2. Select
      Settings
      Cloud Accounts
      Add Cloud Account
      .
    3. Select
      Alibaba Cloud
       as the
      Cloud to Secure
      .
    4. Enter a
      Cloud Account Name
      .
      A cloud account name is auto-populated for you. Replace it with a cloud account name that uniquely identifies your Alibaba Cloud account on Prisma™ Cloud.
    5. Select the
      Deployment Type
       you need.
      This drop-down list is visible only if your Prisma Cloud instance is on https://app.prismacloud.cn.
      • Public
        —This is the default option. It allows you to monitor all the resources in the Alibaba China region, but does not monitor resources in the Alibaba Finance region.
      • Finance
        —Allows you to monitor resources located only in the Alibaba Finance regions.
    6. Enter the Alibaba Cloud Resource Name (ARN) as
      RAM Role
       and click
      Next
      .
      The ARN is the unique identifier for the RAM role you created to authorize API access for Prisma Cloud. When you enter the ARN, the Alibaba Cloud Account ID gets added automatically.
    7. Select one or more account groups and click
      Next
      .
      You must assign each cloud account to an account group, and create an alert rule to associate the account group with it to generate alerts when a policy violation occurs.
    8. Review the onboarding
      Status
       of your account on Prisma Cloud and click
      Save
      .
      The status check verifies that the RAM role and policies were set up correctly.
    9. After successfully onboarding the account, you will see it on the
      Cloud Accounts
       page.
    10. Next Steps
      • Review the Prisma Cloud default
        Policies
         for Alibaba Cloud.
        Select
        Policies
        , set the
        Cloud Type
         filter as
        Alibaba Cloud
        , and view all the Config policies that are available to detect any misconfigurations in your infrastructure.
      • Start using the Prisma Cloud Asset Inventory for visibility.

    Recommended For You

    © 2023 Palo Alto Networks, Inc. All rights reserved.