9 User Identification and Cloud Identity Engine

In this chapter, we will learn about user identification and leveraging Cloud Identity Engine to interface with on-premises or cloud active directory to retrieve group information. User identification is one of the major pillars of zero trust as it allows you to grant or deny access to resources based not just on a user’s source IP address but on the identity. Cloud Identity Engine allows you to aggregate different sources of group membership.

We’re going to cover the following main topics so you can build a solid security policy to control who has access to what:

User identification and group mapping
Cloud Identity Engine
User ID redistribution

Technical requirements

Users will gain the most ...

Get Implementing Palo Alto Networks Prisma® Access now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Implementing Palo Alto Networks Prisma® Access by Tom Piens Aka

9

User Identification and Cloud Identity Engine

Technical requirements

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly