Credit Estimator for Prisma Cloud

The goal of this credit-estimator is to help customers to estimate their requirements for Prisma® Cloud credits consumption. It will not provide a price estimate. You can share the link or the uuid generated with your prisma cloud sales representative.

Contact us

1 SKU

Prisma Cloud Enterprise Edition is composed of modules that provide distinct sets of security and or compliance capabilities. Each module has its own Capacity Unit and is charged at Prisma Cloud Credits per Unit.

Easy to start

Once the Prisma Cloud Credits are loaded into your account, you can start using those credits inside Prisma Cloud to consume different Prisma Cloud Modules.

Pay-As-You-Grow model

We measure usage based on the number of Capacity Units consumed for each Prisma Cloud Module every hour. We then roll up to daily, weekly, monthly, and quarterly averages. This prevents overages based on short-term bursts.

Contact us

Contact information

Thank you for your interest in Palo Alto Networks. For anything don't hesitate to contact us using any of the below channels.

Phone number
+1 (866) 320.4788
Email
info@paloaltonetworks.com

Fill in the form to get a credit consumption evaluation.

CSPM (Cloud Security Posture Management)

Total of credits: 0

Visibility, governance & compliance on public clouds, it dynamically discovers cloud resources and sensitive data to detect risky configurations.

Virtual Machines

AWS: EC2, Azure: Virtual Machines, GCP: Google Compute Engine (GCE), Oracle Cloud (OCI): Compute, Alibaba Cloud: ECS

Virtual Machines
Per Virtual Machine (VM) or Defender (for CWP modules)

CWPP (Cloud Workload Protection Platform)

Total of credits: 0

Secure hosts, containers and serverless. This is the only module that can be deployed on self-hosted infrastructure.

Host Security

Host Defender - Per defender agent deployed on Linux or Windows Virtual machine (Hosts that don’t run containers)
Number of Defenders

Container Security

Container Defender

Container Defender - Per container defender deployed on nodes running containers (kubernetes or openshift clusters)
Number of Defenders

App-Embedded Defender

Defender into Dockerfile

App-Embedded Container Defender deployed such as: Tasks on ECS (Fargate), Dockerfile
Number of Defenders

Serverless

Lambda

Serverless Security
Number of Serverless Functions

WAAS

Web Application and API Security

Web App & API Security
Number of Defenders

Code Security

Total of credits: 0

ShiftLeft Security - Secure IaC template before they get deployed on production. Developer definition: an active Git committer that is identified through their Git author email address and has made a contribution to a code repo protected by Prisma Cloud within the last 90 days.

Code

Code Security
Number of developers
IaC Security
Enable/Disable
Software Composition Analysis
Enable/Disable
Secrets Scanning
Enable/Disable
CI/CD Security
Enable/Disable
Static Application Security Testing (SAST)
Enable/Disable

Cloud Identity Security

Total of credits: 0

Only AWS and Azure. Monitor permissions and continuously enforce least-privileged access.

CIEM

Only AWS and Azure

CIEM
0.25x total number of AWS or Azure CSPM Credits

Data Security

Total of credits: 0

Only AWS and Azure - Integrates with Palo Alto Networks DLP service and provides built-in data profiles (PII, health care, financial information and Intellectual Property) and wildfire.

DLP

Data Loss Prevention

Full Scan - 1 credit per 33GB of Exposure, Sensitive Data, and Malware scanning
Number of GB
Public Exposure - 1 credit per 200GB of Exposure scanning
Number of GB

Runtime Security

Total of credits: 0

Runtime Security linked to new credits plans

Runtime Security

Runtime Security linked to new credits plans

Agentless security for Cloud Threats & Misconfigurations, Access/Permissions, and Infrastructure as Code
Number of VM

CWPP (Cloud Workload Protection Platform)

Total of credits: 0

Secure hosts, containers and serverless. This is the only module that can be deployed on self-hosted infrastructure.

Host Security

Host Defender - Per defender agent deployed on Linux or Windows Virtual machine (Hosts that don’t run containers)
Number of Defenders

Container Security

Container Defender

Container Defender - Per container defender deployed on nodes running containers (kubernetes or openshift clusters)
Number of Defenders

App-Embedded Defender

Defender into Dockerfile

App-Embedded Container Defender deployed such as: Tasks on ECS (Fargate), Dockerfile
Number of Defenders

Serverless

Lambda

Serverless Security
Number of Serverless Functions

WAAS

Web Application and API Security

Web App & API Security
Number of Defenders

Code Security

Total of credits: 0

ShiftLeft Security - Secure IaC template before they get deployed on production. Developer definition: an active Git committer that is identified through their Git author email address and has made a contribution to a code repo protected by Prisma Cloud within the last 90 days.

Code

Code Security
Number of developers
IaC Security
Enable/Disable
Software Composition Analysis
Enable/Disable
Secrets Scanning
Enable/Disable
CI/CD Security
Enable/Disable
Static Application Security Testing (SAST)
Enable/Disable

Data Security

Total of credits: 0

Only AWS and Azure - Integrates with Palo Alto Networks DLP service and provides built-in data profiles (PII, health care, financial information and Intellectual Property) and wildfire.

DLP

Data Loss Prevention

Full Scan - 1 credit per 33GB of Exposure, Sensitive Data, and Malware scanning
Number of GB
Public Exposure - 1 credit per 200GB of Exposure scanning
Number of GB

Runtime Security

Total of credits: 0

Runtime Security linked to new credits plans

Runtime Security

Runtime Security linked to new credits plans

Agentless plus Agent-based threat prevention for Cloud Workloads and APIs
Number of VM

Code Security

Total of credits: 0

ShiftLeft Security - Secure IaC template before they get deployed on production. Developer definition: an active Git committer that is identified through their Git author email address and has made a contribution to a code repo protected by Prisma Cloud within the last 90 days.

Code

Code Security
Number of developers
IaC Security
Enable/Disable
Software Composition Analysis
Enable/Disable
Secrets Scanning
Enable/Disable
CI/CD Security
Enable/Disable
Static Application Security Testing (SAST)
Enable/Disable

Data Security

Total of credits: 0

Only AWS and Azure - Integrates with Palo Alto Networks DLP service and provides built-in data profiles (PII, health care, financial information and Intellectual Property) and wildfire.

DLP

Data Loss Prevention

Full Scan - 1 credit per 33GB of Exposure, Sensitive Data, and Malware scanning
Number of GB
Public Exposure - 1 credit per 200GB of Exposure scanning
Number of GB