How to Configure GlobalProtect for Customer Registry Check on Windows on SCM

How to Configure GlobalProtect for Customer Registry Check on Windows on SCM

3826
Created On 04/26/24 10:00 AM - Last Modified 09/27/24 03:21 AM


Objective


This article explains how to configure GlobalProtect HIP registry check on windows using Strata Cloud Manager (SCM)

Environment


  •  Prisma Access on PAN-OS 10.0+
  •  Proper licensing 
  •  Strata Cloud Manager 

Procedure


Configure GlobalProtect to check for the Windows registry key
  1. Launch Regedit on the Windows endpoint and retrieve the registry value. Refer How to Configure GlobalProtect for Customer Registry Check on Windows.
Portal configuration
  1. Login to SCM and go to Workflows > Prisma Access Setup >GlobalProtect
SCM-3a.png
  1. Click on GlobalProtect App and go to default App named "default".
SCM-4a.png
  1. Scroll down to HIP Data Collection and Check Collect HIP DATA
  2. Click Show advanced Options
SCM-5a.png
  1. Under Custom checks add registry settings.
SCM-6a.png

Gateway configuration
  1. In SCM to to Manage > Configuration > NGFW and Prisma Access
  2. Change configuration Scope to Prisma Access Mobile Users Container GlobalProtect.
SCM-1a.png
  1. Click Objects >HIP Objects. Configure name and got to Custom Checks and click on "Registry Key" tab.
SCM-2a.png
SCM-7a.png
  1. Now you can use HIP object in HIP profiles and Security Policies.

Additional Information


How to Configure GlobalProtect for Customer Registry Check on Windows
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000CrPECA0&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail