>
    Enable Dynamic Privilege Access Control for Prisma Access (Managed by Strata Cloud Manager) Through Common Services
    Focus
    Download PDF
    Focus
    1. Home
    2. Prisma Access
    3. Prisma Access Activation and Onboarding
    4. Activate Your Prisma Access License
    5. Prisma Access (Managed by Strata Cloud Manager) and Add-Ons License Activation
    6. Activate a License for Prisma Access (Managed by Strata Cloud Manager) and Add-Ons Through Common Services
    7. Enable Dynamic Privilege Access Control for Prisma Access (Managed by Strata Cloud Manager) Through Common Services
    Download PDF
    Prisma Access

    Enable Dynamic Privilege Access Control for Prisma Access (Managed by Strata Cloud Manager) Through Common Services

    Table of Contents

    Enable Dynamic Privilege Access Control for Prisma Access (Managed by Strata Cloud Manager) Through Common Services

    Learn how to activate dynamic privilege access control for your Prisma Access (Managed by Strata Cloud Manager) tenants through Common Services.
    Where Can I Use This?What Do I Need?
    • Prisma Access license
    • Activation link
    • Strata Logging Service
    • Role: Multitenant Superuser or Superuser with access to the Customer Support Portal
    With Dynamic Privilege Access (DPA) Control, end users can be mapped to several customer projects. An authorized user is allowed access to only one customer project at a time.
    After you activate a license, allocate a license, and plan service connections, add additional locations, and enable available add-ons, continue to enable the optional features as follows.
    Dynamic Privilege Access (DPA) is an optional feature available only to certain Customer Support Portal accounts during the activation of a new Prisma Access tenant. Contact your Palo Alto Networks representative if you need access to enable DPA. After you enable this feature and the tenant is activated, DPA is set for the life of the tenant, and you can't disable it.
    The option to enable DPA is available only once during the first activation of a new Prisma Access tenant. After the tenant is activated, the option is hidden for all the following activations, including add-ons and renewals. It's not available for existing tenants.
    1. (Optional) If you want to use DPA, select the check box for Dynamic Privilege Access.
    2. Agree to the Terms and Conditions.
    3. Activate Now. The products and add-ons that you're activating (such as Prisma Access or Strata Logging Service) are now provisioned. As the subscriptions are activating, the progress status will display. When the process is complete, the tenant status displays as Up. You now have a tenant provisioned with instances of the products that you purchased. The tenant has one user — the account that you used when you began this process.
    4. For a multitenant hierarchy, add your tenants through tenant management.
    5. In a multitenant hierarchy, go through the multitenant first time setup for Prisma Access.
    6. To complete the remaining product setup, you must access the products you purchased and perform any required postinstallation configuration. For information about your products, see:
    7. (Optional) In a multitenant hierarchy, monitor your tenants with the Prisma Access Summary Dashboard.
    8. (Optional) add user access and assign roles.

    © 2024 Palo Alto Networks, Inc. All rights reserved.