: Device > Policy > Recommendation SaaS
Focus
Focus

Device > Policy > Recommendation SaaS

Table of Contents

Device > Policy > Recommendation SaaS

View information on policy rule recommendations from Prisma SaaS and import policies to the firewall.
FieldDescription
Source UserThe administrator who sent the policy rule recommendation to the firewall.
Source DeviceThe source device for the policy rule recommendation.
LocationThe device group on Panorama where this policy rule recommendation is available.
Security ProfilesThe security profile that the policy rule recommendation allows.
ApplicationsThe applications or application groups that the policy rule recommendation allows. Click application group names to see the individual applications in that group.
TagsThe tags that identify the policy rule for the policy rule recommendation.
Do not change the tags of the policy rule; if you change the tags, the firewall cannot rebuild the policy mappings.
DescriptionThe description that the Prisma SaaS administrator gives to the policy rule recommendation.
Active Recommendation
Identifies whether this policy rule recommendation is
  • active—Currently used in Prisma SaaS security policy.
  • removed—Removed from policy by the Prisma SaaS administrator. The firewall administrator can no longer import the policy rule and should Remove Policy Mapping from the firewall and then remove the Security policy rule from the firewall rulebase. Do not leave removed rules in the firewall rulebase.
ActionIdentifies the action for this policy rule recommendation, either allow or deny.
New Update AvailableIdentifies that there is a new update for the policy rule recommendation. Check the Applications column for the application changes. If you agree with the changes, select the rule and Import Policy Rule to update the policy. that you must import from Prisma SaaS. When you import the policy rule recommendation update, the firewall dynamically updates the security policy rule and its associated objects.
Import Policy RuleImports the selected policy rule recommendations from Prisma SaaS.
Remove Policy MappingIf you no longer need the policy rule recommendation for a device, you can Remove Policy Mapping for it.
You must also delete the policy rule corresponding to the policy rule recommendation.
Sync Policy RulesIf the SaaS administrator removes a policy recommendation and you Remove Policy Mappings for it and delete the Security policy rule, the removed rule may remain in the rule recommendation list if the information becomes out-of-sync. Sync Policy Rules to synchronize it.