I told you before that I had more leftover (orphaned) questions from the "Great Wall of Knowledge" or, for those who saw it at Ignite, the "Shark wall". And because the first round was popular, we are posting up a Part 2.
The rules are simple: If you're able to provide the first correct answer, we will reward you with some Palo Alto Networks swag. Perhaps something from the booth, or a surprise. We are going to keep it a secret until the winners are announced.
Note: when you answer, please include the question # you are answering.
Here are the next 4 vetted questions:
What is the CLI command for adding a blackhole route?
Can Palo Alto Networks firewall be registered as a member server in an Active Directory, so it can use MSA (Managed Security Account)? OR is there any other way to use MSA?
Is there a way to get more information on SSL Decrypt issues or blocks without logging into the Firewall or Panorama?
How to implement GlobalProtect using U7A machine certificate?
As always, please don't be shy.. .answer away and maybe you can win something.