How to configure Cloud Identity Engine on the Panorama to pull the users/groups for use in security Policies?

How to configure Cloud Identity Engine on the Panorama to pull the users/groups for use in security Policies?

8959
Created On 08/06/24 17:53 PM - Last Modified 02/04/26 00:01 AM


Objective


How to configure Cloud Identity Engine on the Panorama to pull the users/groups for use in security Policies?

Environment


  • Cloud Identity Engine (CIE)
  • Panorama
  • Supported PAN-OS

Procedure


  1. Configure Cloud Identity Engine under GUI: Panorama > User Identification > Cloud Identity Engine as a mapping source on the Panorama.
screenshot for cie config on the panorama
  1. Add Cloud Identity Engine (CIE) configured in step 1 under GUI: Panorama > Device Groups > click on device group > select Cloud Identity Engine
screenshots for adding CIE under device group configuration
  1. Click OK and commit the change on the Panorama.
  2. Now users/groups are available to be used under GUI: Device Groups > security policy > source users configuration.
 
 
 

Additional Information


Please Note that this config will only for pulling the group from the cie on panorama, we can not use both ldap and cie since this is base on device group and thats one or the other.

 

 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000scdYCAQ&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language