Monitoring - A fix has been implemented and we are monitoring the results.
Sep 20, 17:30 UTC
Sep 20, 17:30 UTC
Investigating - We are currently investigating issues in app2.prismacloud.io
Sep 20, 16:29 UTC
Sep 20, 16:29 UTC
Identified - The issue has been identified and a fix is being implemented.
Sep 20, 18:08 UTC
Sep 20, 18:08 UTC
Investigating - We are currently experiencing difficulty in Qualys ingestion for resources created after 17th of September, 2021.
Sep 20, 11:34 UTC
Sep 20, 11:34 UTC
Identified - Some customers may experience a delay in effective permissions calculation.
Sep 19, 12:38 UTC
Sep 19, 12:38 UTC
Monitoring - Scheduled: Our goal is to minimize the impact on your network traffic, and we make every effort to perform the upgrades at a time that is minimally disruptive to your organization.
With this data-plane upgrade, you will have the flexibility to select which Prisma Access location(s) to first perform the Dataplane upgrade along with the upgrade time window. A walkthrough of the upgrade process is available here.
To receive active communication on your Dataplane upgrade schedule, provide your upgrade preference and receive notifications during the upgrade process, you must subscribe to Insights notifications. If you have already subscribed to receive alert notifications on Insights before Feb 26th, 2021 you will be notified 21 days before the scheduled Dataplane upgrade via email notifications and Insights alerts.
Before the upgrade, please take the following action for IP Allow Listing:
Please continue to allow list both your Active and Reserved Public IPs in all of your local and 3rd party/SaaS IP allow lists. As a reminder, your current IPs can be obtained by using the API. Documentation on how to use the API can be found here.
If you use Panorama to manage the Prisma Access environment, after all your Prisma Access locations have been upgraded, a new Cloud Services plugin will become available to you. Once available, you have 15 days to upgrade your existing plugin.
Feb 26, 18:35 UTC
With this data-plane upgrade, you will have the flexibility to select which Prisma Access location(s) to first perform the Dataplane upgrade along with the upgrade time window. A walkthrough of the upgrade process is available here.
To receive active communication on your Dataplane upgrade schedule, provide your upgrade preference and receive notifications during the upgrade process, you must subscribe to Insights notifications. If you have already subscribed to receive alert notifications on Insights before Feb 26th, 2021 you will be notified 21 days before the scheduled Dataplane upgrade via email notifications and Insights alerts.
Before the upgrade, please take the following action for IP Allow Listing:
Please continue to allow list both your Active and Reserved Public IPs in all of your local and 3rd party/SaaS IP allow lists. As a reminder, your current IPs can be obtained by using the API. Documentation on how to use the API can be found here.
If you use Panorama to manage the Prisma Access environment, after all your Prisma Access locations have been upgraded, a new Cloud Services plugin will become available to you. Once available, you have 15 days to upgrade your existing plugin.
Feb 26, 18:35 UTC
Monitoring - Palo Alto Networks will be implementing IP address optimizations throughout 2021 to improve the overall experience for our Prisma Access customers. Please read more about it here.
Feb 22, 23:30 UTC
Feb 22, 23:30 UTC
Monitoring - Our cloud service provider has restored all of their impacted services, and Prisma Access is recovering to its normal operating mode. We are continuing to monitor the situation. The next update will be posted by 00:30 UTC.
Aug 31, 23:43 UTC
Aug 31, 23:43 UTC
Update - We are continuing to work with our partner to resolve the issues, next update will be posted by 21:30 PM UTC
Aug 31, 21:37 UTC
Aug 31, 21:37 UTC
Identified - We are having intermittent issues with our cloud hosting partner services. This will result in intermittent commit failures, delayed alerts via Prisma Access Insights, and API failures. Networking and Security services are not impacted. We are working closely with our partner to resolve these issues, next update will be posted by 20:30 PM UTC.
Aug 31, 19:52 UTC
Aug 31, 19:52 UTC
Identified - This is an update to the status page notification that was sent on August 12, 2021, regarding the Palo Alto Networks Security Advisory for GlobalProtect, CVE-2021-3046. If you have a Mobile Users - GlobalProtect deployment and are running 2.0 Preferred, 2.0 Innovation, or 2.1 Preferred, this notice affects you.
The Prisma Access team has researched this vulnerability. The vulnerability allows one SAML authenticated Prisma Access mobile user to impersonate another user. It is rated medium on the CVSS scale. The vulnerability does not allow any unauthenticated attacker to gain unauthorized access. Palo Alto Networks is not aware of any malicious exploitation of this issue and there are no known exploits known in the public.
This vulnerability has been fixed in the 2.1 Innovation version and will be fixed as a part of the dataplane upgrade for Prisma Access 2.2 Preferred starting September 2021.
If you require immediate remediation, contact your Palo Alto Networks account representative or partner to schedule a dataplane upgrade to Prisma Access 2.1 Innovation; however, be aware that you will require another dataplane upgrade in the September 2021 time frame when Prisma Access 2.2 Preferred is released.
Aug 17, 17:18 UTC
The Prisma Access team has researched this vulnerability. The vulnerability allows one SAML authenticated Prisma Access mobile user to impersonate another user. It is rated medium on the CVSS scale. The vulnerability does not allow any unauthenticated attacker to gain unauthorized access. Palo Alto Networks is not aware of any malicious exploitation of this issue and there are no known exploits known in the public.
This vulnerability has been fixed in the 2.1 Innovation version and will be fixed as a part of the dataplane upgrade for Prisma Access 2.2 Preferred starting September 2021.
If you require immediate remediation, contact your Palo Alto Networks account representative or partner to schedule a dataplane upgrade to Prisma Access 2.1 Innovation; however, be aware that you will require another dataplane upgrade in the September 2021 time frame when Prisma Access 2.2 Preferred is released.
Aug 17, 17:18 UTC
Investigating - On August 11th 2020, the Palo Alto Networks Security Team published a CVE that was found externally.
The following CVE could potentially impact a subset of Prisma Access customers that have a Mobile User - GlobalProtect deployment. Customers that do not have a Mobile User - GlobalProtect deployment are not impacted by this CVE.
CVE Name: CVE-2021-3046
Applicable to Prisma Access Versions: 2.0 Preferred, 2.0 Innovation, 2.1 Preferred (2.1 Innovation customers are not impacted)
Severity: Medium
Remediation Timeline: To be Determined
At the moment, Palo Alto Networks is conducting an internal investigation into this event and create a remediation plan. At this time, there is no action required from customers. The CVE is of medium severity and as per service guidelines, Palo Alto Networks will provide an update on the remediation plan by Monday, August 16th, 12 p.m. PST. The next notification will be provided on the status.paloaltonetworks.com page and Palo Alto Networks will send an email notification via Insights.
Aug 12, 18:56 UTC
The following CVE could potentially impact a subset of Prisma Access customers that have a Mobile User - GlobalProtect deployment. Customers that do not have a Mobile User - GlobalProtect deployment are not impacted by this CVE.
CVE Name: CVE-2021-3046
Applicable to Prisma Access Versions: 2.0 Preferred, 2.0 Innovation, 2.1 Preferred (2.1 Innovation customers are not impacted)
Severity: Medium
Remediation Timeline: To be Determined
At the moment, Palo Alto Networks is conducting an internal investigation into this event and create a remediation plan. At this time, there is no action required from customers. The CVE is of medium severity and as per service guidelines, Palo Alto Networks will provide an update on the remediation plan by Monday, August 16th, 12 p.m. PST. The next notification will be provided on the status.paloaltonetworks.com page and Palo Alto Networks will send an email notification via Insights.
Aug 12, 18:56 UTC
Monitoring - (Please ignore this alert if you are running the 2.0-Innovation plugin version and/or your dataplane version is 10.0.3.)
The Cloud Services plugin 2.1 Preferred is now available for Prisma Access (Panorama Managed) deployments.
* If you are running the cloud Services plugin version 2.0-preferred, you can upgrade to the 2.1-Preferred plugin now.
* If you are running a Cloud Services plugin version of 1.8 or 1.7, check your dataplane version.
- If your dataplane is already upgraded to 9.1.7, upgrade your Cloud Services plugin to 2.0 Preferred; then, upgrade to 2.1 Preferred.
- If your dataplane is lower than 9.1.7, then please reach out to your Palo Alto Networks support or sales representative to get upgraded to a supported dataplane version.
* If you are running cloud service plugin 2.0-Innovation or your dataplane version is 10.0.3, please DO NOT UPGRADE to cloud plugin version 2.1-Preferred.
* If you are already running plugin version 2.1-Preferred, you can ignore this alert. No further action is required.
To check your Cloud Services plugin and dataplane versions, select Panorama > Cloud Services > Configuration > Service Setup. The Cloud Services version displays in the Plugin Alert area and the dataplane version displays in the DataPlane PAN-OS version area.
Jun 18, 21:57 UTC
The Cloud Services plugin 2.1 Preferred is now available for Prisma Access (Panorama Managed) deployments.
* If you are running the cloud Services plugin version 2.0-preferred, you can upgrade to the 2.1-Preferred plugin now.
* If you are running a Cloud Services plugin version of 1.8 or 1.7, check your dataplane version.
- If your dataplane is already upgraded to 9.1.7, upgrade your Cloud Services plugin to 2.0 Preferred; then, upgrade to 2.1 Preferred.
- If your dataplane is lower than 9.1.7, then please reach out to your Palo Alto Networks support or sales representative to get upgraded to a supported dataplane version.
* If you are running cloud service plugin 2.0-Innovation or your dataplane version is 10.0.3, please DO NOT UPGRADE to cloud plugin version 2.1-Preferred.
* If you are already running plugin version 2.1-Preferred, you can ignore this alert. No further action is required.
To check your Cloud Services plugin and dataplane versions, select Panorama > Cloud Services > Configuration > Service Setup. The Cloud Services version displays in the Plugin Alert area and the dataplane version displays in the DataPlane PAN-OS version area.
Jun 18, 21:57 UTC
Prisma Access - Cloud Services Plugins Before 2.0 Will Be End-Of-Life (EoL) on June 16, 2021
Subscribe
Update - This is a courteous reminder to inform you that if you have a Panorama managed Prisma Access tenant, then you must upgrade to the 2.0-preferred or 2.0-Innovation plugin before 8PM on June 16th, 2021 (Pacific time). Plugin versions prior to 2.0 will be end of life after June 16th. The following table shows the plugin version compatibility with the dataplane version.
Jun 16, 06:09 UTC
| Dataplane Version | Required Minimum Cloud Services Plugin Version |
|---|---|
| 9.1.7 | 2.0-Preferred |
| 10.0.3 | 2.0-Innovation |
Jun 16, 06:09 UTC
Monitoring - If you are running a Prisma Access (Panorama Managed) deployment that uses a Cloud Services plugin that is earlier than 2.0 and have had your dataplane upgraded to either 9.1.7 or 10.0.3, you must upgrade your plugin to the minimum supported 2.0 version (either 2.0 Preferred or 2.0 Innovation) before June 16, 2021. The supported Cloud Services plugin version depends on the dataplane that your deployment is running.
The following table shows the Cloud Services plugin 2.0 version that you must upgrade to before June 16, 2021. If you do not see the Cloud Services plugin version available for download after the dataplane upgrade, contact your authorized Palo Alto Networks representative or partner or open a support case.
To check your Cloud Services and dataplane versions, select Panorama > Cloud Services > Configuration > Service Setup. The Cloud Services version displays in the Plugin Alert area and the dataplane version displays in the DataPlane PAN-OS version area.
May 29, 00:45 UTC
The following table shows the Cloud Services plugin 2.0 version that you must upgrade to before June 16, 2021. If you do not see the Cloud Services plugin version available for download after the dataplane upgrade, contact your authorized Palo Alto Networks representative or partner or open a support case.
| Dataplane Version | Required Minimum Cloud Services Plugin Version |
|---|---|
| 9.1.7 | 2.0-Preferred |
| 10.0.3 | 2.0-Innovation |
To check your Cloud Services and dataplane versions, select Panorama > Cloud Services > Configuration > Service Setup. The Cloud Services version displays in the Plugin Alert area and the dataplane version displays in the DataPlane PAN-OS version area.
May 29, 00:45 UTC
Investigating - Customer Impact: Ingestion of sample intelligence from WildFire to Autofocus is delayed.
Jul 28, 01:16 UTC
Jul 28, 01:16 UTC
Identified - Urgent message for Cortex Data Lake customers with firewalls onboarded via Panorama. Please read this Customer Advisory for more information. https://live.paloaltonetworks.com/t5/customer-advisories/panorama-on-boarded-firewall-certificate-issue-cortex-data-lake/ta-p/328630
May 19, 18:14 UTC
May 19, 18:14 UTC
About This Site
This page provides status information on Palo Alto Networks Cloud Services.
AutoFocus
Degraded Performance
Cortex Data Lake
Operational
United States - Americas
Operational
United States - Government
?
Operational
Netherlands - Europe
Operational
United Kingdom
Operational
Singapore
?
Operational
Canada
?
Operational
Japan
?
Operational
Australia
?
Operational
Germany
Operational
Cortex XDR
Operational
Netherlands - Europe
Operational
United States - Americas
Operational
United States - Government
Operational
United Kingdom
Operational
Singapore
Operational
Japan
Operational
Canada
Operational
Australia
Operational
Gateway
Operational
Germany
Operational
India
Operational
Cortex XSOAR
Operational
United States - East
Operational
United States - West
Operational
Canada
Operational
Germany
Operational
United Kingdom
Operational
Australia
Operational
DNS Security
Operational
DLP
Operational
Prisma SaaS DLP - NAM
?
Operational
Prisma SaaS DLP - EU
Operational
Prisma SaaS DLP - APAC
Operational
Prisma Access DLP
?
Operational
Prisma Cloud DLP
?
Operational
DLP (NGFW) APAC
Operational
DLP (NGFW) EU
Operational
DLP (NGFW) NAM
Operational
Device Insights
Operational
Cloud Identity Engine
Operational
United States - Americas
Operational
United States - Government
Operational
Netherlands - Europe
Operational
United Kingdom
Operational
Singapore
Operational
Canada
Operational
Japan
Operational
Australia
Operational
Germany
Operational
India
Operational
Explore
?
Operational
Hub
?
Operational
IOT Security
Operational
IOT Security App (US)
Operational
IOT Security Service NGFW (US)
Operational
IoT Security Government
Operational
IoT Security (Europe)
Operational
PAN-DB Cloud
Operational
Advanced URL Filtering
Operational
Prisma Access
Operational
Americas-Argentina
Operational
Americas-Bolivia
Operational
Americas-Brazil Central
Operational
Americas-Brazil East
Operational
Americas-Brazil South
Operational
Americas-Canada Central
Operational
Americas-Canada East
Operational
Americas-Canada West
Operational
Americas-Chile
Operational
Americas-Colombia
Operational
Americas-Costa Rica
Operational
Americas-Ecuador
Operational
Americas-Mexico Central
Operational
Americas-Mexico West
Operational
Americas-Panama
Operational
Americas-Paraguay
Operational
Americas-Peru
Operational
Americas-US Central
Operational
Americas-US East
Operational
Americas-US Northeast
Operational
Americas-US Northwest
Operational
Americas-US South
Operational
Americas-US Southeast
Operational
Americas-US Southwest
Operational
Americas-US West
Operational
Americas-Venezuela
Operational
APAC-Australia East
Operational
APAC-Australia South
Operational
APAC-Australia Southeast
Operational
APAC-Bangladesh
Operational
APAC-Cambodia
Operational
APAC-Hong Kong
Operational
APAC-India North
Operational
APAC-India South
Operational
APAC-India West
Operational
APAC-Indonesia
Operational
APAC-Japan Central
Operational
APAC-Japan South
Operational