Enable Role Based Access for AI Access Security (NGFW Managed by Panorama)

1. Configure a Panorama administrator account and admin role.
   Administrator accounts specify authentication and admin role privileges for a Panorama admin. A custom admin role allows granular customized access privileges for the Panorama admin. For example, if the assigned role privilege does not allow the admin access to Security policy rules then the admin can't implement policy rules to control access to GenAI apps.
2. Enable role-based access for Enterprise Data Loss Prevention (E-DLP).
   This defines the access privileges to configure Enterprise DLP data patterns and profiles that define what is considered sensitive data that must be blocked. Skip this step if you have already configured role-based access to Enterprise DLP or don't want to configure access to Enterprise DLP for the user.
3. Assign role-based access for AI Access Security.
   1. Select User and for the Identity Address, enter the email address for which you granted access in the previous step.
   2. For Apps & Services, select AI Access Security.
   3. Select a predefined Common Services Role.
4. Submit.