Strata Cloud Manager
Insights: Strata Cloud Manager
Table of Contents
Insights: Strata Cloud Manager
Get insights into your network activity, security information, and operational tasks.
| Where Can I Use This? | What Do I Need? |
|---|---|
|
Each of these licenses include access to Strata Cloud Manager:
The other licenses and prerequisites needed to access certain
Dashboards are:
→ The features and capabilities available to you in Strata Cloud Manager depend on which license(s) you are
using.
|
Strata Cloud Manager provides insights into your network activity, offering
granular and actionable security and operational information through dashboards. This
information helps you protect against vulnerabilities and unauthorized access, while
providing management insights on network health, performance, and administrative
tasks.
Insights: Dashboards and Reports
Strata Cloud Manager supports some of these insights with a set of
interactive dashboards that give you a comprehensive view of the applications, ION
devices, threats, users, and security subscriptions at work in your network. The
dashboards provide visibility into the health, security posture, and activity
happening in your deployment that helps you to prevent or address performance and
security gaps in your network. Dashboard support extends across the Palo Alto
Networks products and subscriptions that are supported for cloud
management, and from other sources as well, including Traps, Cortex XDR,
Prisma SaaS, and Proofpoint. The data you see often depends on your subscription.
You can review each dashboard topic to see what the license requirements are for
that dashboard, if role permissions might impact what data is visible, and to learn
about the different types of data that each subscription unlocks.
You can access dashboards from the Insights menu on the left
navigation pane. You can also build your own dashboard using the Build My
Dashboard option. Some of the dashboards also have the option to
download and share reports that you can share offline and schedule for regular
updates. To see if reports are supported for a dashboard, check for these
icons:
Additionally, you can use the report templates in the Reports
menu to download, share, and schedule reports on specific activity such as User
Activity, Network Usage, and so on.
Integrate with Cloud Identity Engine
We recommend setting up Cloud Identity Engine (Directory Sync) to get the most out of
dashboards. Cloud Identity Engine is a free Palo Alto Networks app that gives other
apps read-only access to your Active Directory information, and enables you to:
- Get User Activity data—Cloud Identity Engine enables you to specify the user for whom you want to run a report.
- Easily and securely share reports with other members of your organization—After Cloud Identity Engine is set up, you can easily add recipients to a scheduled report. Your report recipients are checked against Cloud Identity Engine, and if no match is found, it performs an additional validation by checking the email address domain against those associated with your support account. This process ensures that reports are only sent to individuals within your organization.
Integrated apps must be deployed in the same region. At any time, you can go to the
hub to integrate Cloud Identity Engine with Prisma Access or Directory
Sync. ➡ Integrate Palo Alto Networks apps
Support for Insights Dashboards and Reports
The table below shows the list of Insights dashboards and report templates, the
platforms they are supported on, license requirements, and so on.
Some of the dashboard supports in the product are pending
migration to Strata Cloud Manager.
| Feature | Supported on | Licenses and Other Requirements | Scope of Aggregated Data | |||
|---|---|---|---|---|---|---|
| Prisma Access ( Managed by Strata Cloud Manager) | Prisma Access (Managed by Panorama )* | AIOps for NGFW* | Prisma SASE Multitenant Platform | |||
| Dashboard: SASE Health | Yes | Yes | Yes |
| ||
| Dashboard: Best Practices | Yes | No | PAN-OS versions: 10.0 or later | Yes | [Only for AIOps for NGFW] Enable telemetry sharing in devices |
|
| Dashboard: Compliance Summary | No | No | Yes | No | [Only for AIOps for NGFW] Enable telemetry sharing in devices | AIOps for NGFW: per NGFW/ Panorama associated with AIOps for NGFW instance |
| Dashboard: On Demand BPA | No | No | Yes | No | Tech Support File (TSF) | AIOps for NGFW: per NGFW/ Panorama associated with AIOps for NGFW instance |
| Dashboard and Report: Executive Summary | Yes | Yes | Yes | Yes |
| Per Strata Logging Service tenant |
| Log Viewer | Yes | Yes | Yes | Yes | Strata Logging Service license | Per Strata Logging Service tenant |
| Threat Search | Yes | No | Yes | Yes** | Requirements to view trend graph in
search:
| |
| Report: Download/Share/Schedule | Yes | Yes | Yes | Yes | Refer to respective feature column in this table | |
| Saas Security | Yes | No | No | No |
| Per Prisma Access tenant |
| Dashboard: Security Posture Insights | No | No | Yes | No | AIOps for NGFW: per NGFW/ Panorama associated with AIOps for NGFW instance | |
| Report: Advanced Threat Prevention | Yes | Yes | No | No |
| Per Strata Logging Service tenant |
| Dashboard: IoT Security | Yes | Yes | Yes | No | Device Security license | Per Device Security tenant |
| Dashboard and Report: Prisma SD-WAN | No | No | No | Yes | Prisma SD-WAN license | Per Prisma SD-WAN tenant |
| Dashboard: PAN-OS CVEs | No | Yes | Yes | [Only for AIOps for NGFW] Enable telemetry sharing in devices |
| |
| Dashboard: CDSS Adoption | Yes | Yes | Yes | [Only for AIOps for NGFW] Enable telemetry sharing in devices | AIOps for NGFW: per NGFW/ Panorama associated with AIOps for NGFW instance | |
| Dashboard: Feature Adoption | No | Yes | Yes | [Only for AIOps for NGFW] Enable telemetry sharing in devices | AIOps for NGFW: per NGFW/ Panorama associated with AIOps for NGFW instance | |
| Dashboard: NGFW SD-WAN | No | No | Yes | No | [Only for AIOps for NGFW] Enable telemetry sharing in devices | per NGFW/ Panorama associated with AIOps for NGFW instance |
| Dashboard and Report: Prisma Access Usage | Yes | Yes | No | Per Prisma Access tenant | ||
| Report: User Activity | Yes | Yes | Yes | No | Per user | |
| Report: Network Activity | Yes | Yes | Yes | No |
| Per Strata Logging Service tenant |
| Dashboard and Report: Activity Insights- Overview | Yes | Yes | No | No |
| Per Strata Logging Service tenant |
| Report: App Usage | Yes | Yes | No | No |
| Per Strata Logging Service tenant |
| Report: GDPR | ||||||
| Report: SaaS Risk Assessment | ||||||
Prisma Access (Panorama Managed)* -
- For Prisma Access (Panorama managed) users with Strata Logging Service hosted in the non-Americas region, you need to provide consent to allow Prisma Access to read and process data from the Strata Logging Service in the non-Americas region. Review and accept the privacy notice on the Dashboard home page to provide your consent and view more dashboards and logs. Only app, instance, and account administrators can see and accept the privacy notice.
- Dashboards are not supported in Prisma Access (Panorama managed) multi-tenant environment.
Yes*—Yes means all versions of Prisma Access and PAN-OS are
supported.
Yes**—In the multitenant platform, tenants are identified as tenant service groups (TSGs) and assigned
with TSG ID. A single or multiple tenants can be associated per Customer Support
Portal (CSP). The data shown in the dashboard depends on the following
scenarios:
- Your app from which you access the dashboard needs to be TSG supported and accessed through the SASE platform or the tenant view on the hub.
- You have associated devices with your tenant using Common Services in the hub.
- Verify if your tenants have one-to-one or many-to-one mapping with CSP.
- If your tenants have one-to-one mapping with CSP, you can view dashboard data across all sources (for example, in WildFire dashboard, data across samples from Palo Alto Networks firewalls, Prisma Access, Cortex XDR, Prisma SaaS, Proofpoint and manual uploads are shown).
- If multiple tenants are associated per CSP, the dashboard shows data from only Prisma Access, Palo Alto Networks firewalls, and Panorama appliances associated with specific tenants and not from other sources.
AIOps for NGFW*—The dashboards available in AIOps for NGFW depend on whether you have a Free or Premium
license tier.