https://live.paloaltonetworks.com/t5/general-topics/is-there-a-way-to-limit-the-number-of-logged-in-administrators/m-p/29030#M21228 <HTML><HEAD></HEAD><BODY><P>A maximum number of logged in users would be a good feature.&nbsp; Let me know if you have a Feature Request number for this.</P></BODY></HTML> Thu, 03 Jul 2014 22:27:16 GMT pulukas 2014-07-03T22:27:16Z https://live.paloaltonetworks.com/t5/general-topics/is-there-a-way-to-limit-the-number-of-logged-in-administrators/m-p/29027#M21225 <HTML><HEAD></HEAD><BODY><P>This came up as a question during a class and to my knowledge there is not a way to limit the number of logged in administrators, however the student asking presented a reasonable case;&nbsp; In a service provider or large enterprise environment during a network event multiple administrators log into the firewall and begin looking at filtered logs.&nbsp; Once more than about three get logged in the performance of the MP becomes significant enough to impede those administrators as they search for interesting log events. </P><P></P><P>My initial recommendation is to have the logs pointed at a log collection tool, and have the administrators use that tool for the filtered views.&nbsp; Is that the only way to manage this type of load?</P></BODY></HTML> Wed, 02 Jul 2014 14:01:36 GMT https://live.paloaltonetworks.com/t5/general-topics/is-there-a-way-to-limit-the-number-of-logged-in-administrators/m-p/29027#M21225 gelgin 2014-07-02T14:01:36Z https://live.paloaltonetworks.com/t5/general-topics/is-there-a-way-to-limit-the-number-of-logged-in-administrators/m-p/29028#M21226 <HTML><HEAD></HEAD><BODY><P>Hello <A href="https://live.paloaltonetworks.com/u1/12718">gelgin</A>,</P><P></P><P>As far as the firewall is concerned, the management plane would definitely take heavy toll if there are multiple administrators filtering traffic logs at the same time.&nbsp; In order to cope up with Service providers and Enterprise level environments, we have a central managing system (virtualized or hardware based) called 'Panorama' where is specially dedicated for logging and reporting purposes. Its a central management system that manages several firewall together and can be ready in situations like yours. </P><P></P><P>More on Panorama:</P><P><A href="https://live.paloaltonetworks.com/docs/DOC-6590">Panorama Administrator's Guide 6.0 (English)</A></P><P><A href="https://live.paloaltonetworks.com/docs/DOC-4173">Panorama Design Planning</A></P><P></P><P>If Panorama is not an option, you can enable syslogging on the firewall and certainly leverage third party vendors like SPLUNK and SPICEWORKS.</P><P></P><P>Hope that helps!</P><P></P><P></P><P></P><P>Thanks and regards,</P><P>Kunal Adak</P></BODY></HTML> Wed, 02 Jul 2014 16:28:18 GMT https://live.paloaltonetworks.com/t5/general-topics/is-there-a-way-to-limit-the-number-of-logged-in-administrators/m-p/29028#M21226 kadak 2014-07-02T16:28:18Z https://live.paloaltonetworks.com/t5/general-topics/is-there-a-way-to-limit-the-number-of-logged-in-administrators/m-p/29029#M21227 <HTML><HEAD></HEAD><BODY><P>And thats what I thought... I pointed him in those directions as well... Maybe its worth a feature request for environments that may have operational constraints that demand the use of the firewall vs. an offline approach?</P></BODY></HTML> Wed, 02 Jul 2014 16:54:48 GMT https://live.paloaltonetworks.com/t5/general-topics/is-there-a-way-to-limit-the-number-of-logged-in-administrators/m-p/29029#M21227 gelgin 2014-07-02T16:54:48Z https://live.paloaltonetworks.com/t5/general-topics/is-there-a-way-to-limit-the-number-of-logged-in-administrators/m-p/29030#M21228 <HTML><HEAD></HEAD><BODY><P>A maximum number of logged in users would be a good feature.&nbsp; Let me know if you have a Feature Request number for this.</P></BODY></HTML> Thu, 03 Jul 2014 22:27:16 GMT https://live.paloaltonetworks.com/t5/general-topics/is-there-a-way-to-limit-the-number-of-logged-in-administrators/m-p/29030#M21228 pulukas 2014-07-03T22:27:16Z