Prerequisites for Strata Cloud Manager Onboarding
Focus
Focus
Next-Generation Firewall

Prerequisites for Strata Cloud Manager Onboarding

Table of Contents

Prerequisites for Strata Cloud Manager Onboarding

Prerequisites for onboarding a Strata Cloud Manager tenant and firewalls.
Contact your account team to enable Cloud Management for NGFWs using Strata Cloud Manager.
Where Can I Use This?What Do I Need?
Review the requirements to onboard a Strata Cloud Manager tenant and firewalls to Strata Cloud Manager.
Note that some requirements, such as PAN-OS Version, Firewall Model, Ports, and Services, apply to the firewall. While others, such as the Logging and Authentication service requirements, apply to your Customer Support Portal (CSP) account.
Prerequisite
Supported
Required?
PAN-OS Version
(minimum)PAN-OS 10.2.3
Yes
Firewall Model
Single vsys firewalls only
Multi-vsys firewalls are not supported
PA-410 not supported if Enterprise DLP license is active
PA-220 and PA-220R
PA-400 Series
PA-450R
PA-800 Series
PA-1400 Series
PA-3200 Series
PA-3400 Series
PA-5200 Series
PA-5400 Series
PA-5450
PA-7000 Series
VM-Series
N/A
Ports
Ports are used for outbound communication from the firewall to Strata Cloud Manager and SLS
443
444
3978
Yes
Services
Services are used for resolution of the Strata Cloud Manager tenant, as well as software and content updates
DNS
NTP
Yes
Firewall Onboarding
AIOps for NGFW (Premium)
(Optional) Zero Touch Provisioning (ZTP)
Yes
ZTP onboarding is optional
Firewall Management
Strata Cloud Manager
Yes
Account Administrator or App Administrator hub roles
Logging
Strata Logging Service
Yes
Data Filtering
Enterprise data loss prevention (DLP)
No
Routing
Advanced Routing Engine
Enabled by default during onboarding
Yes
SaaS Application Management
Next-Generation CASB
No