>
    Strata Copilot
    Insights: Device Security
    Focus
    Download PDF
    Focus
    1. Home
    2. Strata Cloud Manager
    3. Strata Cloud Manager Getting Started
    4. Insights: Strata Cloud Manager
    5. Insights: Device Security
    Download PDF
    Strata Cloud Manager

    Insights: Device Security

    Table of Contents

    Insights: Device Security

    See information about the devices on the network and their distribution across subnets.
    Where Can I Use This?What Do I Need?
    • Prisma Access (Managed by Panorama or Strata Cloud Manager)
    • NGFW, including those funded by Software NGFW Credits
    Each of these licenses include access to Strata Cloud Manager:
    The other licenses and prerequisites needed for visibility are:
    • A role that has permission to view the dashboard
    • Device Security
    → The features and capabilities available to you in Strata Cloud Manager depend on which license(s) you are using.
    To get started, select InsightsSecurityDevice Security. To learn more about Device Security and find the Administration Guide for Device Security, see the Device Security Docs.

    What does this dashboard show you?

    The Device Security dashboard serves as the gateway to Device Security, the unified assets discovery, monitoring, and protection platform for all devices in your network. Device Security delivers unified, AI-powered protection across all connected devices, including unmanaged and managed IT, IoT, OT, and BYOD devices. With Device Security, you get aggregated visibility, risk assessment & prioritization, and proactive risk mitigation in one solution.
    • Aggregated Visibility – The Assets Inventory presents a unified way to see all of your network devices learned through traffic monitoring and third-party integrations. With over 2,000 identity and posture attributes, the Assets Inventory provides comprehensive visibility and context into your network.
    • Risk Assessment & PrioritizationDevice Security combines knowledge of threats and vulnerabilities with your security posture to assess your network and reduce noise by prioritizing risks. With knowledge of known threats, active exploits, documented vulnerabilities (CVSS & EPSS), and security hygiene best practices, Device Security monitors your network for high severity risks and active vulnerabilities. It then compares these risks against your defined asset criticality, known patches, and applied compensating controls to provide a prioritization of risks and mitigating actions that you can take.
    • Proactive Risk Mitigation – By analyzing network traffic behaviors and high-priority risks, Device Security proactively recommends Security Policy Rules. You can review and add policy rule recommendations to your firewall to ensure only allowed traffic passes through your network. You can also define Device-ID objects using multiple device attributes to specify what matching criteria to use for different Security Policy Rules.

    How can you use the data from this dashboard?

    To use Device Security in Strata Cloud Manager, you need a Device Security license. Work with your Palo Alto Networks contact to acquire a license, and then follow the steps to activate your license and onboard Device Security.
    Because Device Security relies on next-generation firewalls for passive traffic monitoring and policy enforcement, you need to prepare your firewall and deploy your firewall for device visibility.
    Once you've finished setting up your firewalls for Device Security, return to Strata Cloud Manager and navigate to InsightsSecurityDevice Security to configure your networks, integrate with third-party products, discover devices, review vulnerabilities, and monitor all devices in your network. To learn more about the full capabilities of Device Security, and how to configure and manage Device Security, visit the Device Security Docs.

    © 2025 Palo Alto Networks, Inc. All rights reserved.