Agentless User-ID Connection to Active Directory Servers give me timout connection error

Reply
L2 Linker

Agentless User-ID Connection to Active Directory Servers give me timout connection error

Hello

plz help me in this problem, Agentless User-ID Connection to Active Directory Servers give me timout connection error, how i can fix this ?

i'm using server 2012

i already followed this link steps : https://live.paloaltonetworks.com/t5/Management-Articles/Agentless-User-ID-Connection-to-Active-Dire...

but with no result

user-agent.jpg

Tags (2)
L2 Linker

Re: Agentless User-ID Connection to Active Directory Servers give me timout connection error

Hi,

Whats the the AD domian name,please try domain\username

Highlighted
L2 Linker

Re: Agentless User-ID Connection to Active Directory Servers give me timout connection error

yes i did it already, my domain is pa.ma, but there is no result
L7 Applicator

Re: Agentless User-ID Connection to Active Directory Servers give me timout connection error

@hamza_ineos,

Have you followed the information as documented HERE  and actually given the user Distributed COM, Event Log Readers, Server Operators? You also need to give the selected account access to CIMV2 to allow Enable Account and Remote Enable? I'm fairly certain the default permissions for Administrator are not going to work here without following the above. 

 

highly recommend you do not use the domain admin account for this user and actually setup a seperate account specific to this function and properly follow the Best Practices guide HERE

L2 Linker

Re: Agentless User-ID Connection to Active Directory Servers give me timout connection error

yes i did with another account but there is n problem :(

L3 Networker

Re: Agentless User-ID Connection to Active Directory Servers give me timout connection error

did you got the solution as i am also getting same error 

L2 Linker

Re: Agentless User-ID Connection to Active Directory Servers give me timout connection error

no not yet

L3 Networker

Re: Agentless User-ID Connection to Active Directory Servers give me timout connection error

For another server i am getting error as not connected , when i add the user id to domain admin group it is getting connected without any error and when i remove it shows not connected 

 

the server is 2012 , not sure if this will work on 2008 server ....you may try the same 

L2 Linker

Re: Agentless User-ID Connection to Active Directory Servers give me timout connection error

Plz can you send me by pictures how you add this user-id ??

L3 Networker

Re: Agentless User-ID Connection to Active Directory Servers give me timout connection error

hi 

 

this has to be done on server side i.e on AD for service account which you are using in PA for user id to ip mapping , you have to add that user to group which i required as mentioned on PA site i.e event log , security  log , DCOM , server operator ... once you also add him to domain admin group it will show connected ....i my case when i did this on lab it is working but in customer it is still not working.... please advise anyone if they know the solution for this ..i even reseted the password of the service account 

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!