Security

 View Only
last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

cppm Palo alto interaction - a question

This thread has been viewed 3 times

  • 1.  cppm Palo alto interaction - a question

    Posted Jun 29, 2020 12:24 PM
      |   view attached

    CPPM 6.8.x  Palo Alto  Appliance  O/S  9.0.8

     

    When reading document "ClearPass_Integration-Guide_Palo-Alto_v2019-02.pdf", am i right in thinking that if you have a panorama system and some firewalls, you only have to send post auth data to panorama and it will forward "stuff" to  the firewalls ... as per the paragraph ...

    "Adding Palo Alto Networks Panorama Context Server Endpoint"

     

    Palo Alto Networks Panoramam is the centralized management system for the next  generation Palo Alto Firewalls. ClearPass has an option to integrate directly with Panoprama which in turn will forward the information to multiple firewalls it manages

     

    I only ask because in the attached diagram from a PA doc it implies that data is sent to a firewall whiich oin turn goes up to Panorama and then down to any other  firewalls.

     

    I've just created an enforcement profile I use in existing policies

     

    Rgds

    Alex

     



  • 2.  RE: cppm Palo alto interaction - a question

    EMPLOYEE
    Posted Jun 29, 2020 08:08 PM

    Yes, send the post-auth data to Panorama and it will forward the information to multiple firewalls it manages. 



  • 3.  RE: cppm Palo alto interaction - a question

    Posted Jul 04, 2020 01:32 AM

    Hey Alex,

     

    Not sure if you saw the latest Blog I posted on July 1st of the latest and updated Exchange integrations, but we also posted A LARGE update to our CPPM/PANW Integration TechNote.