SaaS Security Administrator's Guide
    : Import New SaaS Policy Rule Recommendations on Cloud Managed Prisma Access
    Focus
    Download PDF
    Focus
    1. Home
    2. SaaS Security
    3. SaaS Security Administrator's Guide
    4. SaaS Security Inline
    5. Remediate Risks of Unsanctioned SaaS Apps
    6. Manage Policy for Unsanctioned SaaS Apps
    7. Manage Enforcement of Rule Recommendations on Cloud Managed Prisma Access
    8. Import New SaaS Policy Rule Recommendations on Cloud Managed Prisma Access
    Download PDF

    SaaS Security Administrator's Guide

    Import New SaaS Policy Rule Recommendations on Cloud Managed Prisma Access

    Table of Contents

    Import New SaaS Policy Rule Recommendations on Cloud Managed Prisma Access

    Learn how to import new SaaS policy rule recommendations on Cloud Managed Prisma Access to gain visibility into and control of the applications in the rule.
    This feature requires the SaaS Security add-on license for your platform.
    When a SaaS Security administrator authors and submits Security policy rule recommendations, the Web Security administrator can import those rules and the Security administrator can push those rules to gain visibility into and control of the applications in the policy recommendation. Before you begin, learn about the Hub roles that enable administrators to collaborate on SaaS Security Inline.
    SaaS policy rule recommendations are based on a combination of applications, users and groups, categories, activities, device posture, and data profiles. The import process automatically creates the necessary objects, including an Application Group for the applications in the SaaS policy rule recommendation. The name of the Application Group is derived from the Rule Name that the SaaS Security administrator assigned to the SaaS policy rule recommendation.
    For audit purposes, all imports and updates and deletions of existing SaaS policy rules recommendations are logged along with the administrator who took the action. When an import fails, the log indicates the reason for the failure. Web Security Administrators and Security Administrators can view such logs.
    1. From Prisma Access Cloud Management, navigate to Web Access Policy.
    2. In New SaaS Rule Recommendations, locate the policy recommendation that you want to import, then ActionsImport.
    3. In the Import dialog and using the best practices outlined in Web Access Policy, select Rule Order to indicate where to position the new policy in the rulebase, then Import.
      If you specify a rule name that already exists in the rulebase, the imported rule overwrites the existing rule.
      The policy recommendation that you imported displays as an Imported policy in Imported SaaS Rule Recommendations. If your import fails, click the Last import failed link to understand why the import failed, then resolve the failure.
      SaaSSecurityRecommendation tag (Web SecurityObjectsTags) is added automatically to rule recommendations when you import the rule recommendation. Use this tag to filter for rules that apply to rule recommendations.
    4. Click Push Config.
    5. (Optional) Enable automatic updates.

    © 2024 Palo Alto Networks, Inc. All rights reserved.