>
    Connect a Single and Multiple Prisma SD-WAN Site to Prisma Access
    Focus
    Download PDF
    Focus
    1. Home
    2. Prisma SD-WAN
    3. Prisma SD-WAN Administrator’s Guide
    4. Prisma SD-WAN SASE Easy Onboarding
    5. Connect a Single and Multiple Prisma SD-WAN Site to Prisma Access
    Download PDF
    Prisma SD-WAN

    Connect a Single and Multiple Prisma SD-WAN Site to Prisma Access

    Table of Contents

    Connect a Single and Multiple Prisma SD-WAN Site to Prisma Access

    Learn how to integrate a single Prisma SD-WAN site with Prisma Access and use this workflow to onboard a single Prisma SD-WAN site to Prisma Access.
    Where Can I Use This?What Do I Need?
    • Strata Cloud Manager
    • Prisma SD-WAN
      • Prisma SD-WAN license
      • Prisma SD-WAN AppFabric deployed at one or more locations.
      • Physical and/or virtual ION devices running software versions 5.6.X or higher.
    • Prisma Access Cloud Managed
      • Prisma Access with Aggregate Bandwidth; the bandwidth licensing mode must be enabled per compute location on the Prisma Access Cloud Managed portal.
      • Identification of the IPSec Termination Nodes within Prisma Access for connectivity.
    • Ensure that you have Prisma Access (Cloud Managed) and Prisma SD-WAN in the same TSG.
    Use this workflow to onboard a single Prisma SD-WAN site to Prisma Access.
    1. Configure SASE connectivity.
      This is a one-time activity.
    2. Select WorkflowsPrisma SD-WAN SetupBranch Sites.
    3. Click Connect to Prisma Access for the site that you want to connect to Prisma Access under Prisma Access Connection.
    4. Select a Prisma Access Location.
      Prisma Access recommends the first location in the list closest to the Prisma SD-WAN site address. The recommendation is based on the address (latitude and longitude values) entered during site creation in Prisma SD-WAN.
    5. Select the corresponding IPSec Termination Node.
      For every 1 Gbps of bandwidth allocated to a Prisma Access region, a new Termination Node is spun up; you can accordingly select a different termination node.
    6. (Optional) Select a Secondary Prisma Access Location and a corresponding IPSec Termination Node.
    7. Click Connect Sites.
      You can view the status of the connection in the SASE Connection column.
      For each Prisma SD-WAN circuit for a site, a corresponding tunnel to Prisma Access is created in this process. You can have a maximum of 4 circuits connecting to Prisma Access for a site.
    8. (Optional) You can view the details of the Prisma Access peer by selecting WorkflowsPrisma SD-WAN SetupBranch SitesSelect a SiteOverlay ConnectionsBranch-Standard VPN.

    Connect Multiple Prisma SD-WAN Sites to Prisma Access

    Use this workflow to connect multiple Prisma SD-WAN sites to Prisma Access.
    1. Select WorkflowsPrisma SD-WAN SetupBranch Sites.
    2. Select the sites to be integrated and click Connect to Prisma Access.
    3. Verify the appropriate Prisma Access Location and IPSec Termination Node and click Connect Sites.

    Disconnect from Prisma Access

    You can disconnect your site from Prisma Access. This removes the tunnel configuration between Prisma SD-WAN and Prisma Access, but it stores SASE Configuration objects such as PA locations and circuits for ease in reconnection.
    1. Select WorkflowsPrisma SD-WAN SetupBranch Sites and select a site.
    2. View details in the Prisma Access Connectivity section.
    3. Click Disconnect from Prisma Access.

    © 2025 Palo Alto Networks, Inc. All rights reserved.