>
    Strata Copilot
    Insights: Status and Monitoring
    Focus
    Download PDF
    Focus
    1. Home
    2. Strata Cloud Manager
    3. Strata Cloud Manager Getting Started
    4. Insights: Strata Cloud Manager
    5. Insights: Status and Monitoring
    Download PDF
    Strata Cloud Manager

    Insights: Status and Monitoring

    Table of Contents

    Insights: Status and Monitoring

    View a visual representation of your PAN-OS devices, including Next-Generation Firewalls (NGFWs) and Panorama management appliances.
    Where Can I Use This?What Do I Need?
    • NGFWs
      (with Strata Cloud Manager or Panorama configuration management)
    • AIOps for NGFW Free (use the AIOps for NGFW Free app) or AIOps for NGFW Premium license (use the Strata Cloud Manager app)
    • Software NGFW Credits
      (for VM-Series software NGFWs)
    Monitor the health and performance of your NGFW devices and Panorama appliances in a unified view through InsightsNGFWStatus and Monitoring. This feature facilitates a seamless transition from Panorama-based monitoring to Strata Cloud Manager, offering a consolidated perspective of both your NGFW and Prisma Access environments.
    When Panorama appears in the NGFW List, it is represented differently than a firewall. Panorama is a management platform, not a traffic-processing device, so the traffic throughput and session metrics that apply to your NGFW appliances do not apply to Panorama. Instead, Strata Cloud Manager surfaces a set of metrics tailored to the operational role Panorama performs.
    Gain insights into your deployed devices, including:
    • Total onboarded devices
    • Quantum readiness status
    • Devices sending logs to SLS
    • Devices sending telemetry
    • Devices with delayed telemetry
    • Devices with critical incidents
    • Number of models
    • Number of software versions
    The Sending Telemetry widget displays the count of devices actively transmitting telemetry data to the backend. Conversely, the with Delayed Telemetry widget indicates the number of devices experiencing issues with telemetry transmission. The Devices table provides a comprehensive view of all devices, showing their telemetry status: enabled, delayed, or disabled. You can further refine this view by filtering devices based on their Telemetry Status.
    You can filter the devices based on their type, model, software version, host name, serial number and telemetry status. You can also Export the list of devices.
    Toggle Quantum Readiness to view the devices that are quantum ready and not ready.
    Filtering and Exporting Device Lists
    Filter your device list by type, model, software version, hostname, serial number, and telemetry status. To clear all filters and view the complete list, click Reset. You can also Export the device list for further analysis.
    License Details
    To view installed licenses and their expiry dates for each device, select Details in the License column.
    Quantum Readiness
    Quantum Readiness assesses your organization's crypto posture, offering visibility, identifying quantum-ready NGFW devices, and recommending remediation. Toggle Quantum Readiness to see which devices are quantum ready and which are not.

    Edit Location of Devices

    1. Select the devices for which you want to modify or update the location.
    2. Edit Location.
    3. Enter the address information relevant to all chosen devices.
    4. Apply the location to all the selected devices.
      This location data appears on the NetSec Health dashboard's map.

    Edit Device Role

    NGFW List includes the DeviceRole column, which specifies each device's function. This helps users who deploy firewalls in specific network roles, such as Application Firewall, Branch Firewall, Campus Firewall, Data Center Firewall, Edge Firewall, or IoT Firewall. This feature supports use cases like applying consistent policies and analyzing incidents based on the assigned role.
    1. Select the devices for which you want to modify or update the devices role.
    2. Edit Device Role.
    3. Select up to two roles for the devices and Apply.
      You can only select a maximum of two roles. Selecting more than two roles will result in an error and prevent you from proceeding.

    View Device Details

    By selecting a device from NGFW List or by following a link from elsewhere in the application, you can view specific details about a firewall or Panorama appliance, such as resource metrics, traffic metrics, connections, and more.
    The details view differs depending on the device type:
    • NGFW devices display resource metrics, traffic metrics, and session data.
    • Panorama appliances display resource metrics and management-specific performance metrics. Traffic-related tabs are omitted because Panorama is a management platform, not a traffic-processing device. You can view the Panorama operating mode, labeled Mode, in the left Summary card. Panorama uses the Management operating mode when it manages NGFWs. Other available modes include Log Collection mode and Panorama mode. See Performance Metrics.
    NGFW Device Details
    Panorama Device Details
    Device Information
    Select a device to view details like model, serial number, software version, management IP address, role, and geo-location.
    You can view the following information for the device:
    • Inbound and outbound packet rate
    • Total raised incidents on this device
    • Five of the top current incidents by severity on the device
    The current health grade of the device and a chart showing its history over the past 30<x> days. Possible health grades are Good, Fair, Poor, and Critical.
    Resource Metrics
    Resource metrics displays time series charts indicating the trend of the resource metric associated with the CPU or memory resources of the device. The gray area on the graph represents the metric's baseline performance range, plotted based on the historical behavior of the metric. You can view the below graphs:
    • Management Plane - CPU usage and memory usage utilization
    • Data Plane
      • Max and average CPU utilization
      • Packet buffers and Packet descriptors utilization
    • Disk Utilization indicating the memory allocated, used, available with the utilization as a percentage for the time filter duration.
    Strata Cloud Manager displays resource metrics for Panorama in the same way it does for other NGFW platforms, using the Resource Metrics tab. Monitoring these indicators helps you determine whether the Panorama appliance has sufficient capacity to handle its current management workload and whether hardware or virtual resource constraints might be contributing to performance degradation.
    With Strata Cloud Manager Essentials or free tier licenses, you can view the resource and traffic metric graphs with static threshold values: 60% for the warning threshold and 80% for the critical threshold. In contrast, with a Strata Cloud Manager Pro or premium tier license, these graphs include a normality band (or baseline). Any data points that fall outside of this band are highlighted with red scatter plot dots.
    Performance Metrics (Panorama only)
    Performance metrics capture the operational behavior of Panorama as it carries out management tasks. These metrics include the count of administrators connected during a given time instant, duration to execute commit tasks, configuration file size, and requests received by the Panorama backend. Trending information is available for each of these indicators, allowing you to observe how management operations perform over time rather than only at a single point in time. By reviewing commit and push latency trends, you can identify periods of elevated load or emerging bottlenecks before they result in failed or delayed configuration deployments across your managed devices.
    You can view the graphs for the following performance metrics for Panorama:
    • Number of Admins Connected: This graph displays the count of administrator sessions actively connected to Panorama over time. You can use this graph to identify peak usage periods and determine whether a high number of concurrent administrators is contributing to increased platform load during commit and configuration operations.
    • Job Info Commit Duration: This graph tracks how long Panorama takes to complete each commit operation over time. You can use this graph to detect upward trends in commit latency, which may indicate growing configuration complexity, resource constraints, or commit queue contention that could delay policy enforcement across your managed devices.
    • Configuration File Size: This graph shows the size of the Panorama configuration file over time. You can use this graph to monitor configuration growth, since a larger configuration requires more processing time and memory during commits and pushes, directly affecting overall platform performance.
    • Number of Requests: This graph displays the volume of API and management requests that Panorama processes over time. You can use this graph to assess the operational demand on your Panorama appliance and determine whether automation integrations or high request traffic are affecting platform responsiveness.
    Traffic Metrics (NGFW only)
    Traffic metrics provide time-series charts for NGFW devices, offering insights into network traffic on:
    • Session - Session table utilization, connections per second, packet rate, session table utilization, and decrypted sessions.
    • Tunnel - List of all tunnels configured for the device indicating tunnel name, tunnel status, source IP address, and destination IP address.
    • Interface - Select an interface to view information about its interface packet drops, packets received and transmitted, receive errors, bytes received and transmitted.
    Hardware Health
    The Hardware Health tab displays the status of NGFW hardware appliance components—such as fans, power supply, and thermals—and indicates any activated alarms.
    License/Certificate/Content
    The License/Certificate/Content tab displays the status of the licenses applied on the device with their expiration date, the status of the certifications present on the device with their expiration date and the recency of the content bundles on the device with the latest available packages.
    All Metrics
    The All Metrics tab displays current information about all the telemetry available for the device, consolidating the metric trends and tabular data presented in other tabs.
    Connectivity
    Click Show Connectivity to display the following connections:
    • Device Connections displays the other devices connected to the one you are currently viewing. Select a device to view its details.
    • Service Connections displays an overview of all Security and Logging services integrated with the device. Select a service to view its details.
    Click Hide Connectivity to hide the connection details.

    © 2026 Palo Alto Networks, Inc. All rights reserved.