Prisma SSE : MU Security Policy
Prisma SSE : MU Security Policy
GlobalProtect functions as the VPN component within Prisma Access, Palo Alto Networks' cloud-based Secure Access Service Edge (SASE) solution. Through the GlobalProtect client, Prisma Access provides remote users with a secure, encrypted connection, ensuring protected access to applications and data regardless of their location.
Prisma Access : What is Remote Networks (RN) ?
Prisma Access : What is Service Connections (SC) ?
Prisma Access : What is Mobile User (MU) ?
Prisma SSE- How to enable Global Protect ?
Lets see how we can enable the security policy for MU.
Step 1: Navigate to Manage > Configuration > NGFW & Prisma Access.
Step 2: In the top left-hand corner, ensure the configuration scope is set to GlobalProtect.
Step 3: From the Security Services menu, select Security Policy.
Step 4: In the top right-hand corner of Security Policy Rules, click Add Rule.
Step 5: Configure the following:
a. In the General Section:
- Name: allow-internal-applications
- Description: allows access to internal applications
b. In the Match Criteria Section:
- Source Zones: Trust
- Source Address: Any
- Destination Zones: Trust
- Destination Addresses: site-a-subnet & site-b-subnet
- Application: Any
- Action : Allow
Step 6: Configure the following:
a. In the General Section:
- Name: allow-internet
- Description: allows access to internet
b. In the Match Criteria Section:
- Source Zones: trust
- Source Addresses: Any
- Application: Any
- Destination Zones: untrust
- Destination Addresses: Any
- Action : Allow
Now you are completed with the basic setup of Global protect App on the SCM portal and Security policies for mobile uses.
