>
    Add Groups and Domains
    Focus
    Download PDF
    Focus
    1. Home
    2. Prisma SD-WAN
    3. Prisma SD-WAN Administrator’s Guide
    4. Prisma SD-WAN Stacked Policies
    5. Service and Data Center Groups
    6. Add Groups and Domains
    Download PDF
    Prisma SD-WAN

    Add Groups and Domains

    Table of Contents

    Add Groups and Domains

    A service group is a set of common service endpoint types. This service group label is used in network policy rules to allow or force traffic to the defined service endpoint.
    Where Can I Use This?What Do I Need?
    • Prisma SD-WAN
    • Active Prisma SD-WAN license
    A service group is a set of common service endpoint types. This service group label is used in network policy rules to allow or force traffic to the defined service endpoint(s). It can be Palo Alto Networks endpoints or standard VPN endpoints and can contain multiple service endpoints.
    You add endpoints to groups which are used to map endpoints to specific domains.
    1. Select ManageResourcesService & DC Groups.
    2. Click Add Group and select Standard VPN.
    3. Enter a Name for this group.
      This group name will be referenced in the network policy rules.

    Add Domains

    A domain is a collection of groups which can be assigned to a set of sites. There can be multiple domains defined, but a site can only be assigned to one domain at a time.
    1. Select ManageResourcesService & DC GroupsAdd Domain.
    2. Add a Domain Name in the popup, and select Done.
    3. Map the service endpoints to the appropriate groups under each domain and select Done.
      If more than one endpoint are part of a group, they are considered as equal in network policy path selection.
      Proceed to bind domain to sites.

    © 2025 Palo Alto Networks, Inc. All rights reserved.