Enable Role Based Access for AI Access Security (Prisma Access Managed by Panorama)

1. Configure a Panorama administrator account and admin role.
   Administrator accounts specify authentication and admin role privileges for a Panorama admin. A custom admin role allows granular customized access privileges for the Panorama admin. For example, if the assigned role privilege does not allow the admin access to Security policy rules then the admin can't implement policy rules to control access to GenAI apps.
2. Enable role-based access for Prisma Access.
   This defines which admins can push configuration changes from Panorama to your Prisma Access tenants.
3. Enable role-based access for Enterprise Data Loss Prevention (E-DLP).
   This defines the access privileges to configure Enterprise DLP data patterns and profiles that define what is considered sensitive data that must be blocked. Skip this step if you have already configured role-based access to Enterprise DLP or don't want to configure access to Enterprise DLP for the user.
4. Assign role-based access for AI Access Security.
   1. Select User and for the Identity Address, enter the email address for which you granted access in the previous step.
   2. For Apps & Services, select AI Access Security.
   3. Select a predefined Common Services Role.
5. Submit.