Using this solution works perfect for smaller branches that doesn’t require a full blown NGIPS. Maybe the branch has a handful of users and device that has enough headroom to light up the Security feature.

I am using v20.13.1 for the SD-WAN Controllers and v17.13.1 for IOS-XE.

Configure – Security – Custom Options – Policies/Profiles
Add Intrusion Prevenstion Policy – Create New
Fill in the appropriate parameters – Save Intrustion prevention Policy
Configure – Security – Add Security Policy – Choose the appropriate Policy based on the use case
Intrusion Prevention – Import from existing – Save Policy
Remember to add the Security Policy under Device Templates.