Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Get Started
- News & Events
- Collaboration
- Education Services
- Technologies
- Next-Generation Firewall
- GlobalProtect
- Threat Prevention Services
- Endpoint Protection
- SSL Decryption
- App-ID
- Content-ID
- User-ID
- 5G
- IoT Security
- Cloud Identity Engine
- Panorama
- AIOps for NGFW
Network Security
- Prisma Access
- Prisma Cloud
- Prisma SD-WAN
- Cloud NGFW for AWS
- CN-Series
- VM-Series:
- Private Cloud
- OCI
- Alibaba
- AWS
- GCP
- Azure
Cloud Security
- Cortex XDR
- Cortex XSOAR
- Cortex Data Lake
- Cortex Xpanse
Security Operations
- Resources
- COVID-19 Response Center
Accessing the User-ID agent or AD on a different interface?
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- LIVEcommunity
- Collaboration
- Blogs
- Accessing the User-ID agent or AD on a different interface?
reaper
Cyber Elite
Options
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Email to a Friend
- Printer Friendly Page
- Report This Content
05-12-2017
07:10 AM
In many network environments, it's good practice to create an Out Of Band network where the management interfaces of your security appliances and services live so they cannot be compromised by a user with a lot of spare time to try and guess passwords.
This can sometimes create interesting challenges, as your appliances may need to access resources that are not available on the secured network. One example is Palo Alto Networks' integrated User Identification mechanisms, where either the firewall reads security audit logs on an Active Directory server, or the server gets an agent software installed that does the reading and sends the output back to the firewall. If the AD server is not connected to the secured network, a different route needs to be taken to get the information on the firewall.
To assist in this sort of issue, a service route can be configured that redirects connections originating from the management plane, via the backplane, to the dataplane. This will force the outgoing connection to egress from a normal network interface without exposing the management interface (pretty cool, huh?).
To configure a service route:
- Navigate to the Device tab on your firewall, and in the
- Open the Setup section
- Go to 'Services'
- Find the 'Service Route Configuration' link
- Switch to 'Customize'
- Scroll down to 'UID Agent' and
- Select the new source interface and IP address for these connections
This will work for both the installed UID agent software and the clientless configuration on the firewall.
if you would like to know more about service routes, please take a look at this article: Setting a Service Route for Services to Use a Dataplane Interface from the Web UI and CLI
Hope you learned a new thing today!
Please feel free to leave a comment or ask questions in the comment section below
Reaper out!
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
About the Author
I drink and I know things
Labels
-
10.0
1 -
10.1
1 -
10.2
1 -
2 factor authentication
1 -
2020
1 -
2fa
1 -
3.0
1 -
30DaysCloud
7 -
5G
8 -
7000
2 -
7000 series
1 -
9.0
1 -
ACC
2 -
addressgroups
1 -
ADEM
1 -
admin roles
1 -
administration
7 -
Adobe Acrobat
1 -
Advanced URL Filtering
3 -
Agent
1 -
AIOps
4 -
AIOps NGFW
2 -
ALERTS
1 -
Alibaba
1 -
Alibaba Cloud
3 -
AMA
5 -
Analytics
3 -
Announcement
1 -
Aperture
3 -
API
4 -
App-ID
14 -
App-Portal
1 -
application
1 -
Application Framework
4 -
Application Override
1 -
applications
2 -
apps
1 -
Ask Me Anything
3 -
Authentication
2 -
Authentication Sequence
1 -
AutoFocus
9 -
Automation
1 -
Autonomous
2 -
Autonomous DEM
3 -
Autonomous Digital Experience Management
2 -
AWS
17 -
Azure
9 -
Beacon
9 -
Best Practice
2 -
Best Practice Assessment
2 -
Best Practices
6 -
Books
1 -
BPA
5 -
Bridgecrew
2 -
Canon
1 -
Case Creation
4 -
case management
1 -
Cases
1 -
categories
2 -
CDSS
4 -
certificate
1 -
Certificates
1 -
Certification
2 -
Certifications
3 -
Certifications & Exams
3 -
Checkov
1 -
ci cd
1 -
Cisco ACI
1 -
CLI
2 -
CLI Command
2 -
CLI Reference Guide
1 -
Cloud
41 -
Cloud Identity Engine
4 -
cloud managed prisma access
2 -
Cloud NGFW
2 -
Cloud NGFW for AWS
5 -
Cloud Security
5 -
cloud service
3 -
Cloud Services Portal
3 -
Cloud Workload Protection Platforms
1 -
CloudBlade
2 -
CloudBlades
4 -
cloudgenix
4 -
CloudSecured
1 -
CN-Series
17 -
Code Security module
1 -
Commit Process
1 -
Community
119 -
Community Experience Refresh
1 -
community feedback
1 -
Community Guidance
1 -
Community News
4 -
Compatibility
1 -
Compatibility View
1 -
Configuration
17 -
Configuration and Management
5 -
consulting
1 -
Container
1 -
Containers
1 -
Content-ID
1 -
Cortex
28 -
Cortex Data Lake
10 -
Cortex XDR
41 -
Cortex XDR 2.0 Features
2 -
Cortex XDR 2.2 Features
1 -
Cortex XDR 2.3
1 -
Cortex XDR 2.4 Features
1 -
Cortex XDR 2.5 Features
1 -
Cortex XDR 2.6 Features
1 -
Cortex XDR 2.7 Features
1 -
Cortex XDR 2.9 Features
1 -
Cortex XDR 3.0 Features
1 -
Cortex XDR 3.1
1 -
Cortex XDR 7.4 Features
1 -
Cortex XDR 7.5 Features
1 -
Cortex XDR Agent
3 -
Cortex XDR Agent 7.3 features
1 -
Cortex XDR Features
1 -
Cortex Xpanse
3 -
Cortex XSOAR
21 -
Cortex XSOAR Webinar
1 -
COVID-19
2 -
credits
1 -
csp
13 -
CSP outage
1 -
custom report
1 -
Custom Signatures
1 -
Customer Experience
2 -
Customer Help
2 -
customer news
2 -
Customer Success
14 -
Customer Support Portal
5 -
Customer Support Resources
1 -
CVE-2021-1675
1 -
CVE-2022-22963
1 -
CVE-2022-22965
1 -
CX Day
2 -
CXDay2020
1 -
cyber elite
12 -
Cyber Elite Program
17 -
cyberelite
12 -
cybersecurity
9 -
Cybersecurity Academy
1 -
Data Center
1 -
data lake
1 -
Data Loss Prevention
4 -
Data Loss Prevention 7000
1 -
data pattern
1 -
Data Security
1 -
dataplane
1 -
Debug
4 -
Decryption
4 -
Dependency
1 -
Deployment
1 -
Detection and Response
1 -
dev_ops
1 -
Developers
1 -
device management
1 -
DevSecOps
1 -
discussion
1 -
discussions
1 -
DLP
3 -
dns
6 -
DNS Security
9 -
dotw
7 -
Download
1 -
EDL
3 -
edu
1 -
EDU-114
1 -
Education
16 -
Education Services
8 -
Educational Services
4 -
ela
1 -
email notification
1 -
Email Notifications
1 -
Endpoint
6 -
Endpoint Security Manager (ESM)
2 -
Enterprise
1 -
Error Message
1 -
Event
2 -
Events
63 -
Exams
1 -
Expedition
3 -
Expert Program
1 -
faq
1 -
feature request
1 -
FeatureRequest
2 -
Features
4 -
File Blocking
1 -
Filtering
1 -
Firewall
91 -
fuel
5 -
Fuel User Group
11 -
Fundamentals
1 -
gateway
1 -
gateway selection
1 -
gcp
5 -
Getting Started
1 -
Github
1 -
Global
1 -
GlobalProtect
43 -
GlobalProtect 5.0
3 -
GlobalProtect App
1 -
GlobalProtect Cloud Service
2 -
GlobalProtect HIP check
1 -
GlobalProtect-COVID19
24 -
GlobalProtect-Resources
19 -
google
1 -
Google Chrome extension
1 -
google cloud platform
3 -
GP
3 -
GPCS
1 -
Grateful
1 -
Grayware
2 -
Guidance and Guidelines
2 -
ha
1 -
Happy Holidays
1 -
Hardware
2 -
High Availability
1 -
HIP
1 -
HIP Check
1 -
How to
8 -
how-to
3 -
how_to
2 -
HTTP
1 -
hub
6 -
Hybrid Cloud
3 -
Hyper Scale
1 -
IAC
3 -
ICS
1 -
Identity
1 -
ignite
4 -
Ignite 2021
8 -
Ignite 21
1 -
Ignite conference
2 -
ignite2019
3 -
Ignite2020
8 -
Ignite21
5 -
IGNITEQ&A
1 -
initial configuration
1 -
Interactive Event
2 -
Interactive Events
1 -
IoMT
1 -
ION
1 -
IoT
14 -
IoT Security
22 -
IPSec
2 -
IPv6
1 -
Iron Skillet
1 -
IronSkillet
1 -
Kubernetes
4 -
LatinxHeritage
1 -
LatinxHeritageMonth
4 -
Learning
3 -
Learning Center
1 -
license
1 -
License Keys
1 -
licenses
2 -
licensing
1 -
live community
3 -
Live Community Help
4 -
livecommunity
10 -
log forwarding
4 -
log retention period
1 -
Log Settings
1 -
Log4Shell
1 -
Logging
6 -
logging service
3 -
logging_services
1 -
login
1 -
LogJam
1 -
Logs
1 -
Mac OS X
1 -
machine learning
6 -
MacOS
2 -
Magnifier
1 -
Malware
4 -
Management
29 -
Management & Administration
1 -
Mapping
2 -
member spotlight
8 -
MFA
3 -
micro-credentialing
1 -
microsoft 365
1 -
Migration
1 -
Migration Tool
2 -
minemeld
1 -
ML-Powered NGFW
4 -
Monthly Release
1 -
MSP
2 -
multi factor authentication
1 -
Multi-Category URL Filtering
2 -
multi-factor authentication
1 -
Nebula
2 -
Network
1 -
Network Perimeter
1 -
network security
16 -
Network Security Management
1 -
Networking
1 -
New Features
6 -
News
2 -
Next-Generation Firewall
9 -
Next-Generation Firewall. NGFW
3 -
Next-Generation Firewalls
1 -
NGFW
38 -
notifications
1 -
NPI
1 -
NSX
2 -
NSX-T
2 -
nutanix
1 -
OCI
3 -
office 365
1 -
Okta
1 -
Okyo
3 -
Okyo Garde
4 -
on demand
1 -
Oracle Cloud
2 -
Oracle Cloud Infrastructure
4 -
PA Firewall
1 -
PA-220R
1 -
PA-7000 Series Firewall
1 -
Palo Alto Networks
1 -
Pan-OS
56 -
PAN-OS 10.0
3 -
PAN-OS 10.1
3 -
PAN-OS 10.2
1 -
PAN-OS 9.0
7 -
PAN-OS 9.1
2 -
Panorama
29 -
panorama_csr
1 -
PANOS-9.0
2 -
Parked
1 -
PCCET
2 -
PCCSA
3 -
PCNSA
4 -
PCNSE
9 -
PDF summary report
1 -
Phishing
1 -
plugin
2 -
policies
1 -
Policy
2 -
Postman
1 -
Pre-Logon
1 -
PrintNightmare
1 -
Prisma
27 -
Prisma "cloud code security" (CCS) module
1 -
Prisma Access
42 -
Prisma Access 2.0
1 -
prisma access app
1 -
Prisma Access Cloud Management
3 -
prisma access insights
2 -
Prisma Access MSP
4 -
Prisma Cloud
16 -
Prisma Cloud Compute Edition
1 -
Prisma Coud
1 -
Prisma SaaS
5 -
Prisma SASE
5 -
Prisma SD-WAN
12 -
PrismaAccess
2 -
PrismaAccess-COVID19
11 -
prismaaccessinsights
2 -
Privacy Data Sheets
1 -
Private Cloud
4 -
Professional Services
2 -
Proxy Avoidance
2 -
Public Cloud
2 -
Query Builder
1 -
Questionable
1 -
Quickplay Solutions
2 -
Release Notes
3 -
Release-Notes
3 -
Remediation
1 -
Remote Code Execution
1 -
Remote location
1 -
Remote Networks
3 -
report group
1 -
reporting and logging
1 -
Reports
2 -
Resources
3 -
RSA
1 -
Rule
1 -
SaaS
4 -
Saas Security
4 -
SAML
2 -
SASE
10 -
SCADA
1 -
SD-WAN
12 -
Second Watch
1 -
Secure Input
1 -
secureinput
1 -
Security
8 -
Security Advisory
1 -
Security Policy
5 -
security profile
1 -
Security Profiles
2 -
security Service
2 -
Services
1 -
session
1 -
Setup & Administration
1 -
Shift-Left
2 -
SIEM
1 -
Skillets
2 -
Smart NIC
1 -
smb
1 -
SNMP Monitoring
1 -
Social Media
1 -
Software
1 -
SolarStorm
1 -
SolarWinds
1 -
Spark User Summit Event
1 -
Split Tunneling
1 -
Spring Framework
1 -
SpringShell
1 -
SSL
1 -
SSL Decryption
5 -
SSL Forward Proxy
1 -
strata
5 -
Strata Firewall
2 -
Subscriptions
1 -
SUNBURST
1 -
Supply Chain Security
1 -
Support
23 -
Support Guidance
1 -
support portal
1 -
Symphony
1 -
Technologies
3 -
Terraform
3 -
Thankful 2020
1 -
Thanksgiving
1 -
Threat
30 -
Threat Intelligence Management
1 -
threat log
1 -
Threat Management
4 -
threat prevention
7 -
Threat Prevention License
1 -
threat protection
1 -
Threat Vulnerability Advisory
1 -
Threats
1 -
Tips & Tricks
6 -
tls
1 -
TMS
4 -
Tools
3 -
Training
1 -
Traps
8 -
Traps Agent
8 -
Traps Management Service
4 -
Troubleshooting
8 -
Tutorial
10 -
unit 42
18 -
unit42
5 -
upgrade
3 -
URL Filtering
9 -
URL Filtering (PAN-DB)
1 -
User-ID
7 -
User-ID mapping
1 -
userid
1 -
users
1 -
Veteran Training
3 -
Veterans Day
1 -
Video
8 -
Videos
4 -
VIP
1 -
Virtualization
6 -
VM
1 -
VM-Series
48 -
VM-Series on AWS
3 -
VM-Series on Azure
2 -
VMware
1 -
VPN
2 -
Vulnerability
12 -
Vulnerability Protection
2 -
webcast
1 -
Webinar
6 -
Wildcard DNS Abuse
1 -
Wildfire
14 -
Wildfire API
1 -
Women's Equality Day
1 -
XDR
1 -
Xpanse
1 -
XSOAR
3 -
Year in Review
1 -
YouTube
3 -
Zero Trust
10 -
Zero Trust Network
2 -
Zero Trust Network Security
8 -
ztna
1 -
ZTP
1
- Previous
- Next
Related Content
Top Liked Posts
| Subject | Likes |
|---|---|
| 10 Likes | |
| 8 Likes | |
| 6 Likes | |
| 6 Likes | |
| 5 Likes |
Top Liked Authors
| User | Likes Count |
|---|---|
| 28 | |
| 18 | |
| 13 | |
| 10 | |
| 8 |
LEGAL NOTICES
Copyright 2007 - 2022 - Palo Alto Networks
