Enforcement using Palo Alto Networks Firewall

Overview

IPS delivers layer 3 network access control solution when deployed with Palo Alto Networks next-generation firewalls. IPS authenticates users, ensures that the endpoints meet security policies, and then dynamically updates the firewall enforcement point with the resulting user session information. Upon successful user authentication with IPS, the access to protected resources behind the firewall is based on the user identity, IP address, and user role information provided by IPS.

The IPS and PAN integration provides identity enabled layer 3 enforcement for BYOD and guests as well as enterprise employees, with the end authentication and comprehensive compliance checks from IPS.