>
    Strata Copilot
    Create a Peripheral Group
    Focus
    Download PDF
    Focus
    1. Home
    2. Enterprise DLP
    3. Administration
    4. Configure Enterprise DLP
    5. Endpoint DLP
    6. Create a Peripheral Group
    Download PDF
    Enterprise DLP

    Create a Peripheral Group

    Table of Contents

    Create a Peripheral Group

    Create a peripheral group to group multiple peripheral devices of the same type together to apply the same data loss prevention enforcement to multiple peripheral devices at once.
    On May 7, 2025, Palo Alto Networks is introducing new Evidence Storage and Syslog Forwarding service IP addresses to improve performance and expand availability for these services globally.
    You must allow these new service IP addresses on your network to avoid disruptions for these services. Review the Enterprise DLP Release Notes for more information.
    Where Can I Use This?What Do I Need?
    Prisma Access (Managed by Strata Cloud Manager)
    • Endpoint DLP license
    • Enterprise Data Loss Prevention (E-DLP) license
    • Autonomous DEM 5.3.4 or later
    • Prisma Access Agent
    • One of the following Prisma Access versions
      • 10.2Prisma Access 5.2
      • 11.2Prisma Access 5.1 or 5.2
    Create a peripheral device group to group multiple of the same peripheral devices types into a single group. This allows you to apply Endpoint DLP policy rules to multiple peripheral devices that have the same enforcement requirements. A peripheral device can be part of multiple peripheral groups.
    After you create and push a peripheral group configuration change, you can view your audit and push logs to review your configuration change history and to verify the configuration change was successfully pushed to the Prisma Access Agent.

    Create an Endpoint DLP USB Peripheral Group

    Create a USB peripheral group to apply the same data loss prevention enforcement to multiple USB devices at once.
    1. Log in to Strata Cloud Manager.
    2. Select ConfigurationData Loss PreventionSettingsPeripheral Configuration.
    3. Add USB peripheral devices to Enterprise DLP.
    4. In the Onboarded Peripherals, select USB Device.
    5. Select one or more USB devices and Add/Create Group.
    6. Add the selected USB devices to a peripheral group.
      • Add to USB Group
        Select this option if you already created a USB peripheral group and want to add the selected devices to an existing peripheral group.
        To add the selected USB peripherals to an existing peripheral group, select the target Group from the drop-down.
      • Create USB Group
        Select this option if no USB peripheral group exists or if you want to create and add the selected USB devices to a new peripheral group.
        Enter a peripheral group Name to add the selected USB devices to a new peripheral group.
    7. Save.
    8. Push your new peripheral group configuration to the Prisma Access Agent.
      1. Select Endpoint DLP PolicyPush Policies and Push Policies.
      2. (Optional) Enter a Description for the Endpoint DLP policy push.
      3. Review the Push Policies scope to understand the changes included the Endpoint DLP configuration push.
      4. Push.
    9. Create an Endpoint DLP Policy Rule.

    Create an Endpoint DLP Network Share Peripheral Group

    Create a network share peripheral group to apply the same data loss prevention enforcement to multiple network shares at once.
    1. Log in to Strata Cloud Manager.
    2. Select ConfigurationData Loss PreventionSettingsPeripheral Configuration.
    3. Add network share peripheral devices to Enterprise DLP.
    4. In the Onboarded Peripherals, select Network Share.
      To narrow down the list of USB peripherals use the search bar to search for a specific USB peripheral Name or filter by Groups, Manufacturers, or Models
    5. Select one or more network shares and Add/Create Group.
    6. Add the selected network shares to a peripheral group.
      • Add to Network Share Group
        Select this option if you already created a network share peripheral group and want to add the selected network shares to an existing peripheral group.
        To add the selected network shares to an existing peripheral group, select the target Group from the drop-down.
      • Create Printer Group
        Select this option if no network share peripheral group exists or if you want to create and add the selected network share to a new peripheral group.
        Enter a network share group Name to add the selected printers to a new network share group.
    7. Save.
    8. Push your new peripheral group configuration to the Prisma Access Agent.
      1. Select Endpoint DLP PolicyPush Policies and Push Policies.
      2. (Optional) Enter a Description for the Endpoint DLP policy push.
      3. Review the Push Policies scope to understand the changes included the Endpoint DLP configuration push.
      4. Push.
    9. Create an Endpoint DLP Policy Rule.

    Create an Endpoint DLP Printer Peripheral Group

    Create a printer peripheral group to apply the same data loss prevention enforcement to multiple printers at once.
    1. Log in to Strata Cloud Manager.
    2. Select ConfigurationData Loss PreventionSettingsPeripheral Configuration.
    3. Add printer peripheral devices to Enterprise DLP.
    4. In the Onboarded Peripherals, select Printer.
    5. Select one or more printers and Add/Create Group.
    6. Add the selected printers to a peripheral group.
      • Add to Printer Group
        Select this option if you already created a printer peripheral group and want to add the selected printers to an existing peripheral group.
        To add the selected printers to an existing peripheral group, select the target Group from the drop-down.
      • Create Printer Group
        Select this option if no printer peripheral group exists or if you want to create and add the selected printers to a new peripheral group.
        Enter a peripheral group Name to add the selected printers to a new peripheral group.
    7. Save.
    8. Push your new peripheral group configuration to the Prisma Access Agent.
      1. Select Endpoint DLP PolicyPush Policies and Push Policies.
      2. (Optional) Enter a Description for the Endpoint DLP policy push.
      3. Review the Push Policies scope to understand the changes included the Endpoint DLP configuration push.
      4. Push.
    9. Create an Endpoint DLP Policy Rule.

    © 2026 Palo Alto Networks, Inc. All rights reserved.