Monitoring the Cloud Identity Engine

Does anyone have a good method for generating an alert if the Cloud Identity Engine has failed to perform an on-prem or Azure sync in the last 24 hours?

Question around unsigned binaries and Cortex XDR agent detections

Hi folks,

I've been administering Cortex XDR pro for a few years now and just lately in the last 3-4 months we've noticed that unsigned binaries that just got created(usually some of our internal developers testing builds) aren't automatically bloc

OUTLOOK.EXE

Hello Everyone,

can someone provide me with information why this Executable (OUTLOOK.EXE9 is generating alarms in Cortex?

Thanks

XQL Creation time filter

dataset = alerts

I have a question about capture conditions, etc. when using packet dump in IPSec VPN.

Hi

I am experiencing latency between Palo Alto of internal server and peer of internal server in IPSec and am trying to perform packet dump on Palo Alto firewall.

And I performed packet dump with the following conditions

However, Syn and Ack pack

Prisma access palo alto privileged remote access (PRA) adding an app

Hi all,

is it possible to add an application for PRA by making use of Wildcard FQDN or IP subnet range?

I'm trying to open the case in csp but TSF file is not uploaded

As above, the file will not be uploaded from CSP. I changed the browser and it's the same, and the file was formatted correctly. I don't know why

VM-Series Next-Gen Virtual Firewall w/Advanced Threat Prevention (PAYG)の契約変更について

AWS MarketPlaceで、VM-Series Next-Gen Virtual Firewall w/Advanced Threat Prevention (PAYG)をの購入を検討しています。構築期間中は時間払い（OnDemand）とし、本番稼働後は年間一括払い(365-day contract)に切り替えることは可能でしょうか。

API auth REST vs SOAP

I'm having an issue authenticating via RESTful API, PAN OS version 11.1

Using SOAP to fetch my API key, then storing it here

$header = @{
"X-PAN-KEY" = $apikey
}

Then Invoke-Restmethod like this

Invoke-RestMethod -Uri $newURI -Method get -ContentTy

Integrated User-ID Agent - auto password rotation.

Hi all,

Has anybody here ever worked on a solution to automatically change the password of the user-id agent via a PAM solution? 

My goal would be to have our PAM solution change the password in AD, than, via API if possible, change the password of

Panorama SDWAN 3.2.0 - cannot add devices in SD-WAN due to router name

We have SDWAN plugin 3.2.0  When I try to add a device under Panorama - SD-WAN - Devices

I can add a Name, I selected type as Hub but then I dont see anything in Router Name and I cannot type anything in the router name.  Its a required filed so I ca

Panorama read only with read only context switching via SAML?

Can someone please tell me if this is possible?  This is on 11.1.6.    This worked fine in 9.1 on our previous panorama but not working in 11.1.6 on our newer one.   

What I need is to be able to allow users to login via SAML and get RO access to p

Queries on Packet Captures.

Hi Friends,

I have few queries on the Packet captures and traffic logs

1. If we are pinging from the management ip to the gateway ip i am able to ping but how can i see those logs on the GUI of the firewall.

According to my understanding the Tr

Data Filtering with Google Drive

Hello, Looking for some guidance with Data Filtering. I've created a data pattern with the predefined pattern for Credit Cards. I've assigned the pattern to my data filtering profile and applied it to my outbound web traffic security rule. I have...

Tunnel inside of Tunnel

I have a site to site configure and tunnel established between palo alto and juniper vsrx.  I am trying to route an IPSec tunnel through the existing tunnel.  I am able to ping through the existing tunnels so connectivity exist.  I have applied and "