Commit Error on Prisma Access devices -> localhost.localdomain -> snippet -> dlp-predefined-snippet -> profiles -> dlp-data-profiles -> CCN and PII -> exclusion-list -> application is invalid

Commit Error on Prisma Access devices -> localhost.localdomain -> snippet -> dlp-predefined-snippet -> profiles -> dlp-data-profiles -> CCN and PII -> exclusion-list -> application is invalid

2656
Created On 02/25/25 23:19 PM - Last Modified 03/13/25 22:07 PM


Symptom


Commit Error on Prisma Access devices -> localhost.localdomain -> snippet -> dlp-predefined-snippet -> profiles -> dlp-data-profiles -> CCN and PII -> exclusion-list -> application is invalid 

Environment


  • SCM managed Prisma access
  • Enterprise DLP

Resolution


  1. There is a work-around that will resolve the commit issue. 
  2. Documentation mentions that DLP requires at least one application filter if DLP App Exclusion is enabled for non-file option. The best practice is to have at least one application as specified in the document

 

  1. Open Chrome browser and open developer tool, go to console, type 'allow pasting'. This enables pasting commands within a session and creates a session flag to enable non-file exclusion. 
  2. Go to Console and type “sessionStorage.setItem('dlp_feature_flag_app_url_exclusion', true)
  3. Edit the problematic DLP rule add some apps save
  4. Edit the same problematic DLP rule and “delete DLP App Exclusion, save, edit dlp rule again 
  5. These steps will normalize the issue and user is able to commit
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000sdRdCAI&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail