Cloud NGFW for Azure
    : Create a Rulestack on Cloud NGFW for Azure
    Focus
    Download PDF
    Focus
    1. Home
    2. Azure
    3. Cloud NGFW for Azure
    4. Cloud NGFW Native Policy Management Using Rulestacks
    5. Create a Rulestack on Cloud NGFW for Azure
    Download PDF

    Cloud NGFW for Azure

    Create a Rulestack on Cloud NGFW for Azure

    Table of Contents

    Create a Rulestack on Cloud NGFW for Azure

    In the Cloud NGFW, you can author local rulestacks if you are assigned the LocalRuleStackAdmin role.
    If you are deploying the firewall for the first time and intend to use Strata Cloud Manager for policy management, you must deploy a local rulestack first. Deploying a local rulestack is free.
    Complete the following procedure to create a rulestack in Azure Portal.
    1. In the Azure Portal, use the search bar to locate the Local Rulestack .
    2. Click Create.
    3. Choose Subscription and Resource Group from their respective drop-downs in the Project details section of the Basics tab.
    4. Enter a descriptive Name for your rulestack.
    5. Enter the supported Region for your rulestack.
    6. Click the Tags tab.
      1. Enter the Name and Value.
      2. Click Review+create.
    7. Review the rulestack options you have selected and click Create.
    8. After successfully creating the local rulestack, register it in the Azure Portal by creating a customer support case.
    9. To register the local rulestack in the Azure portal, navigate to Support + troubleshooting and select Create Case at Customer Support Portal.
      Consider the following:
    10. When you select the option to Create Case at Customer Support Portal in the Azure portal you're directed to the Customer Support Portal where you will enter your login credentials. You can use your existing Customer Support Portal login credentials, or create a new Customer Support Portal login account. Enter your email address and resolve the Captcha, then click Next.
    11. After entering your email address, the Customer Support Portal determines if you have an existing account, or if you need a new one. If you have Palo Alto Networks products associated with the email address you have entered, information for the Cloud Marketplace (Tenant ID and Serial Number) appear. Click Next to log in to the Customer Support Portal and continue with the registration process.
    12. Follow the prompts to complete the rest of the registration process.
      For existing accounts, registration information is prepopulated. For new Customer Support Portal accounts you will be prompted to set up the account (for example, which Palo Alto products you use).
    13. Once registration is complete a success message appears. You can use the Customer Support Portal to verify this by selecting Products > Assets. In the Assets page, select the Cloud NGFW tab:
    14. You can use the Azure portal to verify that the Cloud NGFW tenant is now registered. In the Azure portal navigate to Support + troubleshooting:
      The Tenant ID and Product serial number now reflect the link between the Palo Alto Networks Customer Support Portal and Azure portal.

    © 2025 Palo Alto Networks, Inc. All rights reserved.