| Where Can I Use This? | What Do I Need? |
|---|
- Prisma Access (Managed by Panorama or Strata Cloud Manager)
- NGFW, including those funded by Software NGFW
Credits
|
Each of these licenses include access to Strata Cloud Manager:
The other licenses and prerequisites needed for visibility
are: - A role that has
permission to view the dashboard
- Advanced WildFire (active subscription attached with NGFW and/or Prisma Access)
- Strata Logging Service
→ The features and capabilities available to you in Strata Cloud Manager depend on which license(s) you are
using. |
The WildFire configuration settings serve as the basic service management and
reporting jump point for the Advanced WildFire cloud-based threat analysis service.
These configuration settings provide administrators with centralized visibility
through access to the
Advanced WildFire reporting through a high-level
monitoring dashboard. This dashboard tracks the lifecycle of a sample
from its initial submission to the final verdict generation, ensuring that all
suspicious activity across the global infrastructure is documented and accessible
for forensic review.
From an operational standpoint, you can also manage the Advanced WildFire API tokens.
The API management interface allows administrators to generate and manage API
tokens, view submission counts, and integrate WildFire’s automated analysis
capabilities into custom scripts or third-party security orchestration tools. This
programmatic access ensures that files can be submitted and reports retrieved at
scale, allowing for seamless integration into a broader security ecosystem beyond
standard hardware submissions.
Additionally, you can designate specific regional WildFire clouds—such as those in
the US, EU, Singapore, or Japan—to host the secure, virtualized environments where
macOS samples are detonated and observed. Advanced WildFire configuration settings
allow organizations to satisfy strict regional data residency requirements by
controlling the geographic location used for macOS dynamic analysis. This granular
governance ensures that while files are temporarily processed in a specific
jurisdiction to determine a verdict, they are promptly deleted following analysis,
with only the resulting threat intelligence synced back to the primary cloud region.
Because this forwarding functionality is disabled by default to maintain a high
security baseline, it provides a deliberate mechanism for balancing high-fidelity
malware detection with global compliance mandates.
