Check for any license or role requirements for the products you're using.
Prisma Access license or AIOps for NGFW license
Before you begin, talk to your Account Administrator and make sure that you've been assigned the role of Web Security Admin. Once you’re a Web Security Administrator, select ManageConfigurationNGFW and Prisma AccessOverviewWeb Security, and Enable Web Security.
Be sure you've selected one of following Configuration Scopes:
GlobalProtect
Explicit Proxy
Remote Networks
One of your NGFWs
After you've enabled Web Security, go to ManageConfigurationNGFW and Prisma AccessSecurity ServicesWeb Security, and configure Web Access Policy to set restrictions for internet access and SaaS applications.
You can also pin Web Security to the sidebar for easy access.
Shows additional security settings configured for the security rule.
S) URL Categories / Web Applications
Shows URL categories and Web Applications you’ve blocked or allowed. Hover your cursor over an allowed URL Category or Web Application to see additional information.
T) Custom Web Access Policies
Shows custom web access policies you’ve created.
U) Default Web Access Policies
Shows the web access policies available by default.
Global Web Access
Enforces your web application and URL category access restrictions for all users.
Global Catch All Policy
Sets the default action for all outbound traffic to any Web Application or URL Category to allow. It’s a good practice to you leave the Global Catch All Policy enabled. Otherwise, any traffic not matching your Web Security rules is enforced according to the Security policy defined under ConfigurationNGFW and Prisma AccessSecurity ServicesSecurity Policy.