If you want to enable JIT provisioning for users, Create Prisma Cloud Roles before you
continue to the next step. When you configure SSO on AD FS, you
must attach this role to the user‘s profile so that the user has
the appropriate permissions and can monitor the assigned cloud accounts
on Prisma Cloud.
Copy the Audience URI, for Prisma Cloud,
which users need to access from AD FS.
Log in to Prisma Cloud and select
Audience URI (SP Entity ID)
This is a read-only field in the format: https://app.prismacloud.io?customer=<string>
to uniquely identify your instance of Prisma Cloud. You require
this value when you configure SAML on AD FS.
Set up AD FS for SSO.
Before you begin to set up the AD FS configuration,
login to your Prisma Cloud account and copy the