Discussions
Check out LIVEcommunity discussions to find answers, get support, and share knowledge related to Palo Alto Networks tools and products.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
Discussions
Check out LIVEcommunity discussions to find answers, get support, and share knowledge related to Palo Alto Networks tools and products.

Browse the Community

General Topics

Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

24090 Posts

Custom Signatures

The Custom Signatures discussion is a resource for security professionals to discuss the creation process of custom signatures in their PAN-OS appliance.

155 Posts

VirusTotal

Have you encountered a false positive verdict for Palo Alto Networks (Known Signatures) on VirusTotal? Use this forum to submit a verdict change request. Change requests should include the File Hash, Link to VirusTotal report, current VirusTotal verdict, and description.

696 Posts

Network Security

Post questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to all things Network Security.

3762 Posts

Cloud Delivered Security Services

Post questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to Palo Alto Networks’ Cloud Delivered Security Services.

867 Posts

Secure Access Service Edge

Post questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to Prisma Access and Prisma SD-WAN.

363 Posts

Cloud Native Application Protection

Post questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to Prisma Cloud and Cloud Identity Engine discussions.

397 Posts

Security Operations

Post questions, provide answers, share best practices, and connect with peers and experts in this area dedicated to Cortex XDR, XSOAR, and Xpanse discussions.

2636 Posts

Activity in Discussions

Upgrading from Cortex XDR prevent to XDR pro

Hi All,

 

Finally we will be upgrading our Cortex xdr prevent to the pro version. Though we would be getting professional services support on this, I need to understand the entire project plan for this Can anyone help me understand as I would be leadin

...

AsifSid by L2 Linker
  • 3015 Views
  • 9 replies
  • 0 Likes

PA-220 none licenses or expired issue

We buy the PA-220 by PChome,but not have licenses,

I have some quesion,

1.PA must have LIcenses?,if I have't licenes ,whitch function can i use?(HA or Policy)?

2.Have't licenses can't update software?

Loading Loop upon login to Cortex xSOAR

Hello Team,

We're experiencing an issue upon logging in to cortex where it will just loop the home page. Upon checking, the developer tools we find below error.

450 Unauthorized

This server could not verify that you are authorized to access the docume

...

Xpanse Business Units

Hi,

Currently we have 2 Business Units "Azercell" and "Baktelekom" on "Inventory > Owned IPv4 Ranges" tab. We've created 2 different tags on Tags field named "Azeronline" and "Aztelekom" in that tab . Is it possible that these 2 tags created as 2 sep

...

Using RPA from Cortex XSOAR

Hello LC,

I working on a unique deployment that requires the use of RPA to do a few actions that are not supported by API on the target systems. Has anyone successfully created an integration or similar for Crayon or other RPA systems? I can see that

...

Where is the id_set.json file utilized?

The purpose of id_set.json is defined here https://xsoar.pan.dev/docs/documentation/pack-docs#how-do-you-find-pack-dependencies. So it's kind of like package-lock.json in NodeJS. However, where do we need to use it? I can only see it's being used in

...

TPhan by L0 Member
  • 250 Views
  • 1 replies
  • 0 Likes

Using Cortex with DeTTeCT and dettectinator

I am using the DeTTeCT approach to assessing our coverage against ATT&CK: GitHub - rabobank-cdc/DeTTECT: Detect Tactics, Techniques & Combat Threats. In this approach, you need to start with a set of yaml files that have your datasources and detectio

...

Untrust WAN to Untrust WAN

Hello,

 

Could anyone help me understand the purpose of the following firewall ruleset Untrust WAN -any to Untrust WAN -any, Application-any, Service:Application-default, Action-Allow, Profile Group:Outbound.

 

Thanks!

rmarath by L0 Member
  • 47 Views
  • 1 replies
  • 0 Likes

CPSP Program Member Confirmation

Hello, 

 

I am both domain administrator and super user in paloalto. And, we are partner. I need to get Micro-Credential for Cloud Security Consultant (PMCC). It needs "CPSP Program Member Confirmation". And, I send request and it says, "Activity req

...

JahidAliyev_0-1710419244646.png

Threat name is Blank on Email report PDF attachment

Hi everyone,

 

Good day and greetings!

 

I have an unusual encounter with an email report pdf attachment. The threat names are blank but I can identify them by looking at the "Count" Like below snapshot.

 

Were this ever a bug or was intended to be

...

renzanjo11_0-1710747378203.png

Global Protect Portal Issues

Hello Everyone,

 

We have just noticed that when we are trying to connect to the GP Portal on the web. We are getting successfully connected over VPN but when going on the web we are getting an auth failed. We have cloud auth with azure. 

 

Errors on

...

tshoot firewall

Hello team,

There was a issue with 3 urls, so what we did we create rule and all user to access these site where 2 sites are working and there is one more site in same rule is not working,it shows below error.

we see the traffic showing incomplete, t

...

shirishkulkarni_0-1710745493023.png