>
    Configure Email Alerts (Strata Cloud Manager)
    Focus
    Download PDF
    Focus
    1. Home
    2. PAN-OS
    3. Monitoring
    4. Configure Email Alerts
    5. Configure Email Alerts (Strata Cloud Manager)
    Download PDF

    Configure Email Alerts (Strata Cloud Manager)

    Table of Contents

    Configure Email Alerts (Strata Cloud Manager)

    Configure email alerts for various log types and enable TLS to prevent SMTP relay and spoofing.
    1. Log in to Strata Cloud Manager.
    2. Select ManageConfigurationNGFW and Prisma AccessObjectsLog ForwardingEmail Server Profile.
    3. Click Add Email Server .
    4. Enter a name, and click Add Email Server Profile.
    5. Enter a Name.
    6. (Optional) Enter an Email Display Name to specify the name to display in the From field of the email.
    7. Enter the email address From which the firewall sends emails.
    8. Enter the email address To which the firewall sends emails.
    9. (Optional) If you want to send emails to a second account, enter the address of the Additional Recipient. You can add only one additional recipient. For multiple recipients, add the email address of a distribution list.
    10. Enter the IP address or hostname of the Email Gateway to use for sending emails.
    11. Select the Type of protocol to use to connect to the email server:
      • Unauthenticated SMTP—Use SMTP to connect to the email server without authentication. The default Port is 25, but you can optionally specify a different port. This protocol does not provide the same security as SMTP over TLS, but if you select this protocol, skip the next step.
      • SMTP over TLS—(Recommended) Use TLS to require authentication to connect to the email server. Continue to the next step to configure the TLS authentication.
    12. (SMTP over TLS only) Configure the firewall to use TLS authentication to connect to the email server.
      1. (Optional) Specify the Port to use to connect to the email server (default is 587).
      2. TLS Version—Specify the TLS version (1.1 or 1.2).
        Palo Alto Networks strongly recommends using the latest TLS version.
      3. Select the Authentication Method for the firewall and the email server:
        • Auto—Allow the firewall and the email server to determine the authentication method.
        • Login—Use Base64 encoding for the username and password and transmit them separately.
        • Plain—Use Base64 encoding for the username and password and transmit them together.
      4. Select a Certificate Profile to authenticate with the email server.
      5. Enter the Username and Password of the account that sends the emails, then Confirm Password.
    13. Click Add to save the Email server profile.
    14. (Optional) Select the Custom Log Format tab and customize the format of the email messages. For details on how to create custom formats for the various log types, refer to the Common Event Format Configuration Guide.
    15. Configure email alerts for Traffic, Threat, and WildFire Submission logs.
      1. Select ObjectsLog Forwarding.
      2. Click Add Log Forwarding Profile, and enter a Name to identify the profile.
      3. For each log type and each severity level or WildFire verdict, select the Email server profile, and click Save.
    16. Create a Security policy rule.
    17. Push Config to push your configuration changes.

    © 2024 Palo Alto Networks, Inc. All rights reserved.