- Live
- ›
- Collaboration
- ›
- Blogs
- ›
- Accessing the User-ID agent or AD on a different interface?
Accessing the User-ID agent or AD on a different interface?
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Email to a Friend
- Printer Friendly Page
- Report This Content
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Email to a Friend
- Printer Friendly Page
- Report This Content
In many network environments, it's good practice to create an Out Of Band network where the management interfaces of your security appliances and services live so they cannot be compromised by a user with a lot of spare time to try and guess passwords.
This can sometimes create interesting challenges, as your appliances may need to access resources that are not available on the secured network. One example is Palo Alto Networks' integrated User Identification mechanisms, where either the firewall reads security audit logs on an Active Directory server, or the server gets an agent software installed that does the reading and sends the output back to the firewall. If the AD server is not connected to the secured network, a different route needs to be taken to get the information on the firewall.
To assist in this sort of issue, a service route can be configured that redirects connections originating from the management plane, via the backplane, to the dataplane. This will force the outgoing connection to egress from a normal network interface without exposing the management interface (pretty cool, huh?).
To configure a service route:
- Navigate to the Device tab on your firewall, and in the
- Open the Setup section
- Go to 'Services'
- Find the 'Service Route Configuration' link
- Switch to 'Customize'
- Scroll down to 'UID Agent' and
- Select the new source interface and IP address for these connections
This will work for both the installed UID agent software and the clientless configuration on the firewall.
if you would like to know more about service routes, please take a look at this article: Setting a Service Route for Services to Use a Dataplane Interface from the Web UI and CLI
Hope you learned a new thing today!
Please feel free to leave a comment or ask questions in the comment section below
Reaper out!
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
- Cortex XSOAR Marketplace a new way to SOAR
- Celebrating Latinx Heritage Month - Meet Stephanie Carlos and Hugo Arenas
- Prisma Access Insights !
- Device Certificates with External Dynamic Lists (EDL) Video
- Celebrating Latinx Heritage Month - Meet Patty Hatter
- URL Filtering Category Modifications: Grayware & Questionable
- Can’t Miss September VM-Series and CN-Series Updates
- Introducing Next-Generation SD-WAN
- Celebrating Latinx Heritage Month
- The State of Cloud Native Security report 2020 is here !
- vfrench on: Celebrating Latinx Heritage Month - Meet Stephanie Carlos and Hugo Arenas
-
MP18
on:
Get to know Cyber Elite: @MP18
- nishetty on: Celebrating Women’s Equality Day
- vkannan on: Panorama Orchestrated Azure Deployments Now in Beta
- kiwi on: What Are Applications and Services?
- jdelio on: More on SSL Decryption
- Sai_Tumuluri on: Coming Soon: Prisma Access 1.7
-
Infrastructure_
TBS on: New GlobalProtect 5.2 Is Here -
icharkashy
on:
How To Configure SNMP Traps Log Forwarding
- DarinSutton on: PAN-OS 10.0 Officially Released
-
10.0
1 -
30DaysCloud
7 -
7000
1 -
ACC
2 -
addressgroups
1 -
administration
1 -
Alibaba Cloud
1 -
Analytics
4 -
Aperture
3 -
API
2 -
App-ID
13 -
App-Portal
1 -
application
1 -
Application Framework
4 -
applications
2 -
apps
1 -
AutoFocus
9 -
AWS
7 -
Azure
6 -
Beacon
3 -
Best Practice Assessment
1 -
Best Practices
4 -
Books
1 -
BPA
3 -
Canon
1 -
Case Creation
4 -
case management
1 -
Cases
1 -
categories
2 -
certificate
1 -
Certificates
2 -
Certifications
2 -
Certifications & Exams
3 -
Cloud
28 -
Cloud Security
1 -
cloud service
3 -
Cloud Services Portal
3 -
CLOUDGENIX
1 -
CloudSecured
1 -
cn-series
2 -
Community
58 -
Community Guidance
1 -
Community News
1 -
Configuration
13 -
Configuration and Management
4 -
Container
1 -
Cortex
14 -
Cortex Data Lake
7 -
Cortex XDR
23 -
Cortex XDR 2.0 Features
2 -
Cortex XDR 2.2 Features
1 -
Cortex XDR 2.3
1 -
Cortex XDR 2.4 Features
1 -
Cortex XDR 2.5 Features
1 -
Cortex XDR Agent
1 -
Cortex XDR Features
1 -
Cortex XSOAR
6 -
COVID-19
1 -
csp
10 -
Custom Signatures
1 -
Customer Help
1 -
Customer Success
9 -
Customer Support Portal
4 -
cyber elite
2 -
Cyber Elite Program
2 -
cyberelite
2 -
cybersecurity
6 -
Cybersecurity Academy
1 -
data pattern
1 -
Debug
2 -
Decryption
3 -
Dependency
1 -
dev_ops
1 -
Developers
1 -
dns
3 -
DNS Security
6 -
EDL
2 -
edu
1 -
EDU-114
1 -
Education
13 -
ela
1 -
Endpoint
5 -
Endpoint Security Manager (ESM)
2 -
Events
18 -
expedition
2 -
Expert Program
1 -
FeatureRequest
1 -
Filtering
1 -
Firewall
92 -
Firewall Essentials
1 -
fuel
6 -
Fuel User Group
9 -
gcp
2 -
GlobalProtect
23 -
GlobalProtect 5.0
3 -
GlobalProtect Cloud Service
2 -
GlobalProtect HIP check
1 -
GlobalProtect-COVID19
11 -
GlobalProtect-Resources
10 -
Google Chrome extension
1 -
google cloud platform
1 -
GP
1 -
GPCS
1 -
Grayware
2 -
Guidance and Guidelines
2 -
ha
1 -
High Availability
1 -
HIP
1 -
HIP Check
1 -
How to
1 -
HTTP
1 -
hub
6 -
Hybrid Cloud
1 -
ICS
1 -
ignite
1 -
ignite2019
3 -
IGNITEQ&A
1 -
IoT
3 -
IPSec
1 -
IPv6
1 -
IronSkillet
1 -
Kubernetes
2 -
LatinxHeritage
1 -
LatinxHeritageMonth
2 -
Learning Center
1 -
license
1 -
License Keys
1 -
licenses
2 -
live community
2 -
Live Community Help
1 -
LIVEcommunity
3 -
log forwarding
3 -
Logging
5 -
Logging Service
2 -
logging_services
1 -
login
1 -
Logs
2 -
machine learning
3 -
Magnifier
1 -
malware
3 -
Management
25 -
Management & Administration
1 -
mapping
2 -
MFA
2 -
Migration
1 -
Migration Tool
1 -
ML-Powered NGFW
3 -
Networking
1 -
Next-Generation Firewall
3 -
NGFW
3 -
notifications
1 -
office 365
1 -
Oracle Cloud
1 -
PA Firewall
1 -
PA-220R
1 -
PA-7000 Series Firewall
1 -
Palo Alto Networks
1 -
PAN-OS
30 -
PAN-OS 9.0
5 -
PAN-OS 9.1
1 -
Panorama
16 -
panorama_csr
1 -
PANOS-9.0
2 -
Parked
1 -
PCCSA
2 -
PCNSA
4 -
PCNSE
9 -
Phishing
1 -
plugin
2 -
policies
1 -
Pre-Logon
1 -
prisma
7 -
prisma access
22 -
prisma access insights
1 -
Prisma Cloud
5 -
Prisma Coud
1 -
Prisma SaaS
5 -
PrismaAccess
1 -
PrismaAccess-COVID19
5 -
prismaaccessinsights
1 -
Privacy Data Sheets
1 -
Public Cloud
2 -
Questionable
1 -
Release Notes
1 -
Release-Notes
2 -
Reports
2 -
Resources
1 -
RSA
1 -
SaaS
2 -
SAML
1 -
SASE
2 -
SCADA
1 -
SD-WAN
2 -
Security
2 -
Security Advisory
1 -
Security Policy
5 -
Services
1 -
Setup
1 -
SNMP Monitoring
1 -
Social Media
1 -
SSL Decryption
4 -
SSL Forward Proxy
1 -
strata
1 -
Support
21 -
Support Guidance
1 -
support portal
1 -
Threat
27 -
Threat Intelligence Management
1 -
Threat Management
3 -
threat prevention
2 -
Threats
1 -
Tips & Tricks
2 -
TMS
4 -
Tools
3 -
Traps
8 -
Traps Agent
8 -
Traps Management Service
4 -
Troubleshooting
1 -
Tutorial
10 -
unit 42
15 -
unit42
2 -
upgrade
2 -
URL Filtering
7 -
User-ID
4 -
users
1 -
Veteran Training
3 -
Video
6 -
Virtualization
5 -
VM-Series
22 -
VPN
1 -
Vulnerability
10 -
webcast
1 -
Webinar
5 -
WildFire
8 -
Women's Equality Day
1 -
XDR
1 -
YouTube
2 -
ZTP
1
- Previous
- Next
