The Autonomous Digital Experience Management
capability is built into the GlobalProtect Client. It is enabled/disabled
by the policy in the Prisma Access administration portal (Both Panorama
and Cloud Managed).
Data Collection
The ADEM Agent collections metrics from
the User workstation in order to provide actionable insights into
workstation, network, path and application performance. The metrics
collected are:
User sessions
GlobalProtect username
GlobalProtect Login / Logout time
GlobalProtect status
Prisma Access location
User geographical local
Service provider name
BIOS
Serial number
Computer
Hostname
Model
Manufacturer
Battery
Network
Hostname
Network interfaces
IPv4 and IPv6 address
Public IP Address
MAC address
Default gateway
WiFi Signal Quality
WiFi Tx Speed
WiFi Rx Speed
WiFi Channel
WiFi Network SSID
WiFi Network BSSID
VPN Network
VPN Interface
VPN Gateway ID/Hostname
Network interfaces
Operating System
OS type
Version
OS architecture
Logical Devices
Device ID
Device type
Media type
Size
Name
Volume name
Volume serial number
Filesystem count
Filesystem storage size
Filesystem usage
CPU
Architecture
Core count
Logical processor count
Manufacturer
Max clock speed (Except on Apple Silicon)
Name
RAM
Memory module capacity (Windows only)
Total Capacity
Synthetic Test Results
Network Latency
Network Jitter
Network Loss
DNS resolution times
TCP Latency
SSL Latency
HTTP Latency
FQDNs Used by ADEM
The ADEM Client sends the data collected
to the ADEM Portal. As such the following FQDN’s may need to be
whitelisted and/or excluded from SSL decryption:
(This is a debugging tool as of 3.0.0) In previous versions
it was used to read encrypted data from GlobalProtect: username, subtenant_id,certificate password.