This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Discover LIVEcommunity — Watch Now

(view in My Videos)

  • 515,557 Members
  • 1,726 Online
  • 1,125,630 Posts
  • 19,069 Solutions
  • 52,491 Likes

Welcome to Palo Alto Networks LIVEcommunity

Find answers, share solutions, and connect with peers and thought leaders from around the world.
New to LIVEcommunity? Check out our Welcome Guide.

Community Activity

Validation of the PAN VPN, SSID, and PEAP-TEAP Protocols

Hi Team I got a question : During a previous session with end user, it was determined that, following the migration from PEAP to TEAP on the metropolitan area’s wireless network, 802.1X authentications fail to complete correctly when traversing the site-to-site VPN between a branch and the corporate headquarters.From a technical standpoint, t...

F.Pinar by L3 Networker
  • 199 Views
  • 2 replies
  • 0 Likes

I see a log indicating that the number of hints exceeded 5,000 after the OS upgrade.

Hello Team, After upgrading the OS (11.1.6-h10 -> 11.1.13-h7), hint-related logs are appearing in the system logs. I am aware of the cause. I am not using Panorama, and the log forwarding profile has "Panorama" checked as the forwarding method, with this profile applied to the policy. However, despite having the same configuration, hint-r...

SangHoonLee_0-1782434882221.png

Post Command getting denied in Postman for Creating Object

Hi All, Im using postman to work on my Firewalls and Im having the following issue: My Goal: to create bulk objects and object groups. Work Done: Connected Postman with Prisma Access using Bearer token. User: Service Account with superadmin role. Success: Can read Object, Object groups, Rule base using GET command in Postman. I get proper ...

Resolved! SNMP OID to monitor subinterfaces?

Hi AllWe are currently trying to monitor Layer 3 sub-interface bandwidth via SNMP. I've been checking the enterprise MIBs for palo alto, and there doesnt seem to be any such OID. Does anyone have an idea what OID to use, if even possible, to monitor a subinterface, for example, ethernet1/12.12?Many Thanks All!RegardsDavid Vassallo

dvas0004 by Not applicable
  • 5515 Views
  • 6 replies
  • 0 Likes

Tips & Tricks: Flow Basic Debugging

14 min read

You can use debug filters to enable the Palo Alto Networks firewall to collect packet captures for troubleshooting purposes. However, there are situations where you may require a more in-depth understanding of the firewall's internal operations. Flow basic provides an extensive view into every stage of the firewall process, including packet ...

kiwi by Community Team Member
  • 71979 Views
  • 6 replies
  • 14 Likes

Avoid reauth in Captive portal

Hi, I have captive portal for auth users with SAML. Users are being prompted to reauthenticate after 20 minutes more or less. Where can the timeout be increased, or how can the requirement to reauthenticate every X amount of time be removed?

BigPalo by L4 Transporter
  • 273 Views
  • 2 replies
  • 0 Likes

Virtual Test Lab

1 min read

The Virtual Test Lab (VTL) offers an environment where users can practice and get familiar with the Palo Alto Networks Next-Generation Firewall. The pre-built lab environment provides access to a Windows Server OS, two Linux server OSes and a Palo Alto Networks Next-Generation Firewall. It allows users a fully isolated environment to freely con...

Masharad by L3 Networker
  • 110178 Views
  • 58 replies
  • 17 Likes

Facing issue in application access & health status shows as down in Prisma ZTNA Connector.

The private application hosted on AWS behind an Application Load Balancer (ALB), and the ZTNA Connector is also deployed within the AWS environment. We configured the application FQDN in the ZTNA Connector however, the application status remains in a DOWN state. To address potential DNS resolution issues, we added the internal DNS servers ip in ...

MAC and captive portal

Hi, Im having an issue with Macbooks. We have a captive portal that uses SAML authentication. If we open Chrome, the captive portal appears and the authentication completes successfully, but no other applications work besides Chrome. Additionally, if we use any other browser, such as Safari, the captive portal does not appear at all. Any ide...

BigPalo by L4 Transporter
  • 184 Views
  • 0 replies
  • 0 Likes

GlobalProtect is no longer able to retrieve information for Trend Micro Apex One Security Agent

We are experiencing an issue where GlobalProtect is no longer able to retrieve information for Trend Micro Apex One Security Agent. As a result, our HIP Objects that rely on this product are no longer matching correctly, and we cannot enforce the related security policies. Everything was working as expected until 17 June 2026, when the issue app...

GP 6.2.8-C982 causes popups on Windows, no Release Notes?

We just rolled out the latest 6.2.8 update (previous version C948), and since it's been installed, users repeatedly get certificate confirmation popups to connect the client. The previous client version never did this, the popups are not just happening on initial connection, but multiple times as users tabs around applications. Is this a known i...

M.Studte by L0 Member
  • 256 Views
  • 1 replies
  • 0 Likes

Is PAN-OS 11.1.4-h33 vulnerable?

Dear Community Members, I want to ask couple of things: Is the PAN OS 11.1.4-h33 vulnerable based on CVE-2026-0273 PAN-OS: Authenticated Admin Command Injection Vulnerability via CLI or Web UI and should be upgraded to PAN OS version 11.1.4-h34 and above? For PA-14020 it came with a base of 11.1.0, can this support to move to other based P...

EDL MS Intune All URL misses an entry

Dear all We got a question assigned about the PaloAlto EDL for MS Intune, the EDL "MSIntune All URL" (accessible via https://saasedl.paloaltonetworks.com/feeds/msintune/all/url). By 30th of April 2026, Microsoft added the URL "lgmsapeswiss.blob.core.windows.net" to her list, which can be reviewed here: Network endpoints for Microsoft Intune - ...

Load more

Upcoming Fuel Events

Top Solution Authors
View All
Top Liked Authors
View All
Top Contributors
View All
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks