With
easy onboarding, you can effortlessly connect
your
Prisma SD-WAN sites to
Prisma Access using the streamlined
onboarding process. With these easy onboarding enhancements,
Prisma SD-WAN now provides:
- Support for site templates with device pre-staging.
You can pre-provision
sites before an ION device is available, to accelerate the deployment. If
you don't have a device at the time of deployment, you can create a virtual
configuration—a device shell. The device shell allows you to create devices,
visualize the network, and make simple configurations. You can assign this
device shell to a site and then associate it with a device, when the device
is available.
- Support for automated BGP configuration with different deployment modes.
The different deployment modes support the auto-configuration of
BGP route-map settings for the following cases:
- Private-App-Access is the default setting
which supports both private application access and internet access.
- Internet-Only provides internet only access
by limiting route propagation inside Prisma Access by not
allowing BGP advertisement.
- Internet-Only-With-Mobile-User-Access
provides internet and mobile user access by limiting
route propagation out of Prisma Access by setting the BGP
configuration to no-export.
- Support for Prisma Access region redundancy.
Prisma SD-WAN supports connection to a secondary Prisma Access location as a backup, thus providing redundancy.
- Support for IPSec profile changes.
You can now synchronize the IPSec
profile between Prisma SD-WAN and Prisma Access by
updating the IPSec Profile on the SASE Connectivity screen.
