: Import New SaaS Policy Rule Recommendations on Cloud Managed Prisma Access
Focus
Focus

Import New SaaS Policy Rule Recommendations on Cloud Managed Prisma Access

Table of Contents

Import New SaaS Policy Rule Recommendations on Cloud Managed Prisma Access

Learn how to import new SaaS policy rule recommendations on Cloud Managed Prisma Access to gain visibility into and control of the applications in the rule.
This feature requires the SaaS Security add-on license for your platform.
When a SaaS Security administrator authors and submits Security policy rule recommendations, the Web Security administrator can import those rules and the Security administrator can push those rules to gain visibility into and control of the applications in the policy recommendation. Before you begin, learn about the Hub roles that enable administrators to collaborate on SaaS Security Inline.
SaaS policy rule recommendations are based on a combination of applications, users and groups, categories, activities, device posture, and data profiles. The import process automatically creates the necessary objects, including an Application Group for the applications in the SaaS policy rule recommendation. The name of the Application Group is derived from the Rule Name that the SaaS Security administrator assigned to the SaaS policy rule recommendation.
For audit purposes, all imports and updates and deletions of existing SaaS policy rules recommendations are logged along with the administrator who took the action. When an import fails, the log indicates the reason for the failure. Web Security Administrators and Security Administrators can view such logs.
  1. Log in to Strata Cloud Manager.
  2. If you have not already, associate the predefined SAAS-Inline-Pol-Recommendations snippet with one or more folders, NGFW, and Prisma Access tenants.
    Use snippets to standardize a common base configuration for a set of NGFW, and Prisma Access tenants. This allows you to quickly onboard new devices with a known good configuration and reduces the time required to onboard a new device. Additionally, this also allows you to quickly apply the same SaaS app security enforcement to multiple NGFW, and Prisma Access tenants.
    Use the predefined SAAS-Inline-Pol-Recommendations snippet to simplify management of your SaaS Security Inline Policy Recommendations.
  3. Create a new SaaS policy rule recommendation or enable a predefined SaaS policy rule recommendation.
  4. Click the Configuration Scope and select SnippetsSAAS-Inline-Pol-Recommendations.
  5. Select ManageConfigurationNGFW and Prisma AccessSecurity ServicesInternet SecurityPolicy Recommendations.
  6. In New SaaS Rule Recommendations, locate the policy recommendation that you want to import, then select ActionsImport.
  7. In the Import dialog and select the Rule Order to indicate where to position the new policy in the rulebase, then Import.
    If you specify a policy rule name that already exists in the rulebase, the imported rule overwrites the existing rule.
    The policy recommendation that you imported displays as an Imported policy in Imported SaaS Rule Recommendations. If your import fails, click the Last import failed link to understand why the import failed, then resolve the failure.
  8. Click Push Config.
  9. (Optional) Enable automatic updates.