Configuration: Identity Services

Table of Contents

Learn to manage Identity Services.

Where Can I Use This?	What Do I Need?
Prisma Access (Managed by Panorama or Strata Cloud Manager) NGFW, including those funded by Software NGFW Credits	Each of these licenses include access to Strata Cloud Manager: Prisma Access AIOps for NGFW Premium Strata Cloud Manager Essentials Strata Cloud Manager Pro → The features and capabilities available to you in Strata Cloud Manager depend on which license(s) you are using.

Go to ConfigurationNGFW and Prisma AccessIdentity Services.

Feature Highlights

Learn how to manage identity services and ensure that only authorized users can access the right data on your network.

Authentication
Authenticate users so that they can securely connect to Prisma Access and access enterprise applications and services. Add authentication services to Prisma Access, define traffic requiring authentication, enable MFA or IP-user mapping.
Cloud Identity Engine
Sync Prisma Access with Active Directory (on-premises or Azure). To set up Cloud Identity Engine with Prisma Access, start by going to the hub to activate Cloud Identity Engine and to add it to Prisma Access. Then go to Prisma Access to validate that Prisma Access is able to access directory data.
Identity Redistribution
Enable consistent security enforcement across NGFWs and Prisma Access by setting up identity redistribution.
Local Users & Groups
Create a local user database on the firewall for authentication purposes. Authenticate firewall administrators accessing the web interface. Authenticate end users connecting through Authentication Portal or GlobalProtect.