Prisma SD-WAN
Enable Autonomous DEM in Prisma Access
Table of Contents
Enable Autonomous DEM in Prisma Access
Enable Autonomous DEM in Prisma Access (Panorama Managed)
| Where Can I Use This? | What Do I Need? |
|---|---|
|
|
To enable ADEM for your Prisma Access Remote Sites, you must enable ADEM using the
aggregate bandwidth workflow for your Prisma Access deployment on Panorama Managed Prisma Access and Cloud Managed Prisma Access.To on-board and
register a Prisma SD-WAN remote site on an ADEM portal, ADEM remote network bandwidth
license should be allocated on the compute location.
You should have already configured Prisma Access and the Prisma SD-WAN device. Aggregate Bandwidth must be configured on your
Prisma Access.
If you are using the Strata Cloud Manager user interface, see the AI-Powered ADEM Administrator's Guide.
Enable Autonomous DEM in Prisma Access (Panorama Managed CloudBlade)
Enable Autonomous DEM in Prisma Access (Panorama Managed CloudBlade) and refer to the
ADEM considerations.
- Open Panorama.In the left panel, expand Cloud Services and click Configuration.Click the Remote Networks tab.Click the gear icon on the top right corner of the Aggregate Bandwidth and Autonomous DEM Settings card to open the Bandwidth Allocation dialog.Select the Enable check box next to the compute location to allocate the bandwidth for its Remote Networks.The Autonomous DEM Allocation column will be visible only if you have purchased the ADEM for Remote Networks license.Click OK.Add the following URLs to make the SD-WAN site register to the ADEM portal:
- In Panorama, go to . Click on Add and add the
following ADEM Service Destination FQDNs.
- agents.dem.prismaaccess.com
- agents.jp1.ap-northeast-1.dem.prismaaccess.com
- agents.sg1.ap-southeast-1.dem.prismaaccess.com
- agents.au1.ap-southeast-2.dem.prismaaccess.com
- agents.ca1.ca-central-1.dem.prismaaccess.com
- agents.eu1.eu-central-1.dem.prismaaccess.com
- agents.uk1.eu-west-2.dem.prismaaccess.com
- agents.us1.us-east-2.dem.prismaaccess.com
- updates.dem.prismaaccess.com
- agents.in1.ap-south-1.dem.prismaaccess.com
- Create an address group to contain the addresses above by going to, clicking Add and providing a name for the address group.
- Add the address group you just created into the security policy. Go to . Click Add and add the address group to the policy.
ADEM Considerations
The following are the prerequisites to enable ADEM for Prisma SD-WAN Remote Networks.- ADEM is only supported when Aggregate Bandwidth is enabled on Prisma Access.
- When using ADEM on Prisma Access for Networks (Panorama Managed), you can only manage ADEM from the Cloud Management console.
- You must allocate Remote Networks bandwidth on the compute locations in Prisma Access.
Enable Autonomous DEM in Prisma Access (Cloud Managed CloudBlade)
Enable Autonomous DEM in Prisma Access (Cloud Managed CloudBlade) and refer the ADEM considerations.To enable ADEM in Cloud Managed Prisma Access. - Click Manage and select Remote Networks.In Remote Networks Setup, under the Autonomous DEM column, to enable Remote Networks on a Compute Location, move its slider to the right until it turns blue.For more information on the ADEM configuration, see Cloud Managed Prisma Access.
ADEM Considerations
The following are the prerequisites to enable ADEM for Prisma SD-WAN Remote Networks.- The minimum Prisma Access for Networks (Cloud Managed) CloudBlade version requirement for integrating Prisma SD-WAN remote networks with ADEM is version 3.x.x.
- ADEM is only supported when Aggregate Bandwidth is enabled on Prisma Access.
- You must allocate Remote Networks bandwidth on the compute locations in Prisma Access.
