https://store-images.s-microsoft.com/image/apps.19777.ea7560fc-5fd9-4a9e-973d-2ab3191561b8.17afd707-6df3-405f-8d82-91f3ac596e1a.77162028-3ec6-4cf5-98dd-5eeba7da5ce0
Palo Alto Networks Cloud NGFW for Microsoft Sentinel solution
Palo Alto Networks, Inc.
Palo Alto Networks Cloud NGFW for Microsoft Sentinel solution
Palo Alto Networks, Inc.
Palo Alto Networks Cloud NGFW for Microsoft Sentinel solution
Palo Alto Networks, Inc.
This solution connects the Palo Alto Networks Cloud NGFW to Microsoft Sentinel
Native Azure Sentinel experience. Palo Alto Networks best-in-class security.
Secure the applications you run on Microsoft Azure with the only managed service that stops more zero-day threats and provides Panorama™ or Strata Cloud Manager™ integration for centralized management.
Cloud NGFW for Azure by Palo Alto Networks is a Native ISV service that enables advanced protection for applications and workloads running in Azure. It offers application-level control, intrusion prevention, URL filtering, and more. Cloud NGFW can identify and control network traffic based on applications, users, content, and other deep packet inspection methods helping secure inbound, outbound, and lateral traffic flows. It is built to provide first-party experience in Microsoft Azure by natively integrating into Azure Portal leveraging Entra ID and Azure Resource Manager. Cloud NGFW resources and its attributes can be accessed using Azure APIs including AzureRM Terraform provider, Azure CLI, and PowerShell.
For logging and monitoring, Cloud NGFW supports forwarding the firewall logs to Log Analytics Workspace. This enables operators to store TRAFFIC, THREAT, and DECRYPTION logs and leverage them within Azure and external systems. Logs can be exported to Azure Storage for backup or to keep longer-term data that doesn’t need to be in Log Analytics.
What are the benefits of this solution?
The solution offers native ingestion of Cloud NGFW firewall logs into Sentinel and enables operators to easily use and build workbooks, hunting queries, and analytics rules to improve incident investigation and proactive threat hunting.
Who is it for?
Customers who are looking to use Sentinel for incident management and response and have deployed Cloud NGFW to secure applications and workloads deployed within Microsoft Azure environments.
What does it include?
3 Analytic Rules for surfacing threats that are detected by CloudNGFW
2 Hunting Queries for identifying potential security issues that may not be classified as direct threats
And 2 Workbooks for visualizing the data that is processed by Cloud NGFW
Learn more:
Learn more
Cloud NGFW for Azure documentationhttps://store-images.s-microsoft.com/image/apps.52501.ea7560fc-5fd9-4a9e-973d-2ab3191561b8.449268d6-da90-41fc-971b-aa514cfa7213.6f6ed9ae-7bf9-4fa5-ab86-d2a0c2848f6f
https://store-images.s-microsoft.com/image/apps.52501.ea7560fc-5fd9-4a9e-973d-2ab3191561b8.449268d6-da90-41fc-971b-aa514cfa7213.6f6ed9ae-7bf9-4fa5-ab86-d2a0c2848f6f
https://store-images.s-microsoft.com/image/apps.43988.ea7560fc-5fd9-4a9e-973d-2ab3191561b8.449268d6-da90-41fc-971b-aa514cfa7213.dba89a70-9006-42a4-bf3f-b7c8516c37ed
https://store-images.s-microsoft.com/image/apps.12256.ea7560fc-5fd9-4a9e-973d-2ab3191561b8.449268d6-da90-41fc-971b-aa514cfa7213.b84f4963-8583-4c05-ac1d-e117018cefb3
https://store-images.s-microsoft.com/image/apps.574.ea7560fc-5fd9-4a9e-973d-2ab3191561b8.449268d6-da90-41fc-971b-aa514cfa7213.2a77ed45-cb1c-49ff-b190-3a5f08300eca