Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Get Started
- News & Events
- Collaboration
- Education Services
- Technologies
- Next-Generation Firewall
- GlobalProtect
- Threat Prevention Services
- Endpoint Protection
- SSL Decryption
- App-ID
- Content-ID
- User-ID
- 5G
- IoT Security
- Cloud Identity Engine
- Panorama
- AIOps for NGFW
Network Security
- Prisma Access
- Prisma Cloud
- Prisma SD-WAN
- Cloud NGFW for AWS
- CN-Series
- VM-Series:
- Private Cloud
- OCI
- Alibaba
- AWS
- GCP
- Azure
Cloud Security
- Cortex XDR
- Cortex XSOAR
- Cortex Data Lake
- Cortex Xpanse
Security Operations
- Resources
- COVID-19 Response Center
DotW: Autolock
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- LIVEcommunity
- Collaboration
- Blogs
- DotW: Autolock
reaper
Cyber Elite
Options
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Email to a Friend
- Printer Friendly Page
- Report This Content
12-06-2017
05:15 AM
In a team where multiple admins are responsible for the same systems, one always needs to coordinate config changes to prevent someone from pushing out or committing a change while someone else is still making changes, potentially committing an invalid or horribly wrong configuration.
To help prevent these kinds of conflicts, two kinds of locks are available to administrators: Commit Locks and Config Locks
As the name implies, a Commit Lock will prevent other admins from committing anything to the firewall until the lock has been released. This lock can be configured to be automatically acquired as soon as one administrator makes a change:
The lock will now first need to be cleared by the first administrator committing his configuration or relinquishing his lock to the second admin.
A lock can also be set manually, by clicking the little lock icon in the upper right-hand corner and selecting the type of lock:
While the Commit Lock prevents other administrators from committing their changes, but still allows them to edit the configuration, a Config Lock prevents all other administrators from making changes to the Candidate Config. You can also add a short description of what you are doing to notify other administrators of your activities:
Anyone trying to change the configuration will be greeted by this error message:
When needed, a lock can be removed by the administrator who acquired the lock, or a superuser.
This blurb is based on a discussiojn I had with @jdprovine the other day where the recommendation had been made to enable automatic Commit Lock, but the functionality had not been explained. I hope this blog post helps other admins make their life a little easier and safe from stepping on each others' toes 🙂
The original discussion can be followed here: autolock
Reaper out!
Labels:
3 Comments
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
About the Author
I drink and I know things
Labels
-
10.0
1 -
10.1
1 -
10.2
1 -
2 factor authentication
1 -
2020
1 -
2fa
1 -
3.0
1 -
30DaysCloud
7 -
5G
8 -
7000
2 -
7000 series
1 -
9.0
1 -
ACC
2 -
addressgroups
1 -
ADEM
1 -
admin roles
1 -
administration
7 -
Adobe Acrobat
1 -
Advanced URL Filtering
3 -
Agent
1 -
AIOps
4 -
AIOps NGFW
2 -
ALERTS
1 -
Alibaba
1 -
Alibaba Cloud
3 -
AMA
5 -
Analytics
3 -
Announcement
1 -
Aperture
3 -
API
4 -
App-ID
14 -
App-Portal
1 -
application
1 -
Application Framework
4 -
Application Override
1 -
applications
2 -
apps
1 -
Ask Me Anything
3 -
Authentication
2 -
Authentication Sequence
1 -
AutoFocus
9 -
Automation
1 -
Autonomous
2 -
Autonomous DEM
3 -
Autonomous Digital Experience Management
2 -
AWS
17 -
Azure
9 -
Beacon
9 -
Best Practice
2 -
Best Practice Assessment
2 -
Best Practices
6 -
Books
1 -
BPA
5 -
Bridgecrew
2 -
Canon
1 -
Case Creation
4 -
case management
1 -
Cases
1 -
categories
2 -
CDSS
4 -
certificate
1 -
Certificates
1 -
Certification
2 -
Certifications
3 -
Certifications & Exams
3 -
Checkov
1 -
ci cd
1 -
Cisco ACI
1 -
CLI
2 -
CLI Command
2 -
CLI Reference Guide
1 -
Cloud
41 -
Cloud Identity Engine
4 -
cloud managed prisma access
2 -
Cloud NGFW
2 -
Cloud NGFW for AWS
5 -
Cloud Security
5 -
cloud service
3 -
Cloud Services Portal
3 -
Cloud Workload Protection Platforms
1 -
CloudBlade
2 -
CloudBlades
4 -
cloudgenix
4 -
CloudSecured
1 -
CN-Series
17 -
Code Security module
1 -
Commit Process
1 -
Community
119 -
Community Experience Refresh
1 -
community feedback
1 -
Community Guidance
1 -
Community News
4 -
Compatibility
1 -
Compatibility View
1 -
Configuration
17 -
Configuration and Management
5 -
consulting
1 -
Container
1 -
Containers
1 -
Content-ID
1 -
Cortex
28 -
Cortex Data Lake
10 -
Cortex XDR
41 -
Cortex XDR 2.0 Features
2 -
Cortex XDR 2.2 Features
1 -
Cortex XDR 2.3
1 -
Cortex XDR 2.4 Features
1 -
Cortex XDR 2.5 Features
1 -
Cortex XDR 2.6 Features
1 -
Cortex XDR 2.7 Features
1 -
Cortex XDR 2.9 Features
1 -
Cortex XDR 3.0 Features
1 -
Cortex XDR 3.1
1 -
Cortex XDR 7.4 Features
1 -
Cortex XDR 7.5 Features
1 -
Cortex XDR Agent
3 -
Cortex XDR Agent 7.3 features
1 -
Cortex XDR Features
1 -
Cortex Xpanse
3 -
Cortex XSOAR
21 -
Cortex XSOAR Webinar
1 -
COVID-19
2 -
credits
1 -
csp
13 -
CSP outage
1 -
custom report
1 -
Custom Signatures
1 -
Customer Experience
2 -
Customer Help
2 -
customer news
2 -
Customer Success
14 -
Customer Support Portal
5 -
Customer Support Resources
1 -
CVE-2021-1675
1 -
CVE-2022-22963
1 -
CVE-2022-22965
1 -
CX Day
2 -
CXDay2020
1 -
cyber elite
12 -
Cyber Elite Program
17 -
cyberelite
12 -
cybersecurity
9 -
Cybersecurity Academy
1 -
Data Center
1 -
data lake
1 -
Data Loss Prevention
4 -
Data Loss Prevention 7000
1 -
data pattern
1 -
Data Security
1 -
dataplane
1 -
Debug
4 -
Decryption
4 -
Dependency
1 -
Deployment
1 -
Detection and Response
1 -
dev_ops
1 -
Developers
1 -
device management
1 -
DevSecOps
1 -
discussion
1 -
discussions
1 -
DLP
3 -
dns
6 -
DNS Security
9 -
dotw
7 -
Download
1 -
EDL
3 -
edu
1 -
EDU-114
1 -
Education
16 -
Education Services
8 -
Educational Services
4 -
ela
1 -
email notification
1 -
Email Notifications
1 -
Endpoint
6 -
Endpoint Security Manager (ESM)
2 -
Enterprise
1 -
Error Message
1 -
Event
2 -
Events
63 -
Exams
1 -
Expedition
3 -
Expert Program
1 -
faq
1 -
feature request
1 -
FeatureRequest
2 -
Features
4 -
File Blocking
1 -
Filtering
1 -
Firewall
91 -
fuel
5 -
Fuel User Group
11 -
Fundamentals
1 -
gateway
1 -
gateway selection
1 -
gcp
5 -
Getting Started
1 -
Github
1 -
Global
1 -
GlobalProtect
43 -
GlobalProtect 5.0
3 -
GlobalProtect App
1 -
GlobalProtect Cloud Service
2 -
GlobalProtect HIP check
1 -
GlobalProtect-COVID19
24 -
GlobalProtect-Resources
19 -
google
1 -
Google Chrome extension
1 -
google cloud platform
3 -
GP
3 -
GPCS
1 -
Grateful
1 -
Grayware
2 -
Guidance and Guidelines
2 -
ha
1 -
Happy Holidays
1 -
Hardware
2 -
High Availability
1 -
HIP
1 -
HIP Check
1 -
How to
8 -
how-to
3 -
how_to
2 -
HTTP
1 -
hub
6 -
Hybrid Cloud
3 -
Hyper Scale
1 -
IAC
3 -
ICS
1 -
Identity
1 -
ignite
4 -
Ignite 2021
8 -
Ignite 21
1 -
Ignite conference
2 -
ignite2019
3 -
Ignite2020
8 -
Ignite21
5 -
IGNITEQ&A
1 -
initial configuration
1 -
Interactive Event
2 -
Interactive Events
1 -
IoMT
1 -
ION
1 -
IoT
14 -
IoT Security
22 -
IPSec
2 -
IPv6
1 -
Iron Skillet
1 -
IronSkillet
1 -
Kubernetes
4 -
LatinxHeritage
1 -
LatinxHeritageMonth
4 -
Learning
3 -
Learning Center
1 -
license
1 -
License Keys
1 -
licenses
2 -
licensing
1 -
live community
3 -
Live Community Help
4 -
livecommunity
10 -
log forwarding
4 -
log retention period
1 -
Log Settings
1 -
Log4Shell
1 -
Logging
6 -
logging service
3 -
logging_services
1 -
login
1 -
LogJam
1 -
Logs
1 -
Mac OS X
1 -
machine learning
6 -
MacOS
2 -
Magnifier
1 -
Malware
4 -
Management
29 -
Management & Administration
1 -
Mapping
2 -
member spotlight
8 -
MFA
3 -
micro-credentialing
1 -
microsoft 365
1 -
Migration
1 -
Migration Tool
2 -
minemeld
1 -
ML-Powered NGFW
4 -
Monthly Release
1 -
MSP
2 -
multi factor authentication
1 -
Multi-Category URL Filtering
2 -
multi-factor authentication
1 -
Nebula
2 -
Network
1 -
Network Perimeter
1 -
network security
16 -
Network Security Management
1 -
Networking
1 -
New Features
6 -
News
2 -
Next-Generation Firewall
9 -
Next-Generation Firewall. NGFW
3 -
Next-Generation Firewalls
1 -
NGFW
38 -
notifications
1 -
NPI
1 -
NSX
2 -
NSX-T
2 -
nutanix
1 -
OCI
3 -
office 365
1 -
Okta
1 -
Okyo
3 -
Okyo Garde
4 -
on demand
1 -
Oracle Cloud
2 -
Oracle Cloud Infrastructure
4 -
PA Firewall
1 -
PA-220R
1 -
PA-7000 Series Firewall
1 -
Palo Alto Networks
1 -
Pan-OS
56 -
PAN-OS 10.0
3 -
PAN-OS 10.1
3 -
PAN-OS 10.2
1 -
PAN-OS 9.0
7 -
PAN-OS 9.1
2 -
Panorama
29 -
panorama_csr
1 -
PANOS-9.0
2 -
Parked
1 -
PCCET
2 -
PCCSA
3 -
PCNSA
4 -
PCNSE
9 -
PDF summary report
1 -
Phishing
1 -
plugin
2 -
policies
1 -
Policy
2 -
Postman
1 -
Pre-Logon
1 -
PrintNightmare
1 -
Prisma
27 -
Prisma "cloud code security" (CCS) module
1 -
Prisma Access
42 -
Prisma Access 2.0
1 -
prisma access app
1 -
Prisma Access Cloud Management
3 -
prisma access insights
2 -
Prisma Access MSP
4 -
Prisma Cloud
16 -
Prisma Cloud Compute Edition
1 -
Prisma Coud
1 -
Prisma SaaS
5 -
Prisma SASE
5 -
Prisma SD-WAN
12 -
PrismaAccess
2 -
PrismaAccess-COVID19
11 -
prismaaccessinsights
2 -
Privacy Data Sheets
1 -
Private Cloud
4 -
Professional Services
2 -
Proxy Avoidance
2 -
Public Cloud
2 -
Query Builder
1 -
Questionable
1 -
Quickplay Solutions
2 -
Release Notes
3 -
Release-Notes
3 -
Remediation
1 -
Remote Code Execution
1 -
Remote location
1 -
Remote Networks
3 -
report group
1 -
reporting and logging
1 -
Reports
2 -
Resources
3 -
RSA
1 -
Rule
1 -
SaaS
4 -
Saas Security
4 -
SAML
2 -
SASE
10 -
SCADA
1 -
SD-WAN
12 -
Second Watch
1 -
Secure Input
1 -
secureinput
1 -
Security
8 -
Security Advisory
1 -
Security Policy
5 -
security profile
1 -
Security Profiles
2 -
security Service
2 -
Services
1 -
session
1 -
Setup & Administration
1 -
Shift-Left
2 -
SIEM
1 -
Skillets
2 -
Smart NIC
1 -
smb
1 -
SNMP Monitoring
1 -
Social Media
1 -
Software
1 -
SolarStorm
1 -
SolarWinds
1 -
Spark User Summit Event
1 -
Split Tunneling
1 -
Spring Framework
1 -
SpringShell
1 -
SSL
1 -
SSL Decryption
5 -
SSL Forward Proxy
1 -
strata
5 -
Strata Firewall
2 -
Subscriptions
1 -
SUNBURST
1 -
Supply Chain Security
1 -
Support
23 -
Support Guidance
1 -
support portal
1 -
Symphony
1 -
Technologies
3 -
Terraform
3 -
Thankful 2020
1 -
Thanksgiving
1 -
Threat
30 -
Threat Intelligence Management
1 -
threat log
1 -
Threat Management
4 -
threat prevention
7 -
Threat Prevention License
1 -
threat protection
1 -
Threat Vulnerability Advisory
1 -
Threats
1 -
Tips & Tricks
6 -
tls
1 -
TMS
4 -
Tools
3 -
Training
1 -
Traps
8 -
Traps Agent
8 -
Traps Management Service
4 -
Troubleshooting
8 -
Tutorial
10 -
unit 42
18 -
unit42
5 -
upgrade
3 -
URL Filtering
9 -
URL Filtering (PAN-DB)
1 -
User-ID
7 -
User-ID mapping
1 -
userid
1 -
users
1 -
Veteran Training
3 -
Veterans Day
1 -
Video
8 -
Videos
4 -
VIP
1 -
Virtualization
6 -
VM
1 -
VM-Series
48 -
VM-Series on AWS
3 -
VM-Series on Azure
2 -
VMware
1 -
VPN
2 -
Vulnerability
12 -
Vulnerability Protection
2 -
webcast
1 -
Webinar
6 -
Wildcard DNS Abuse
1 -
Wildfire
14 -
Wildfire API
1 -
Women's Equality Day
1 -
XDR
1 -
Xpanse
1 -
XSOAR
3 -
Year in Review
1 -
YouTube
3 -
Zero Trust
10 -
Zero Trust Network
2 -
Zero Trust Network Security
8 -
ztna
1 -
ZTP
1
- Previous
- Next
Related Content
- DOTW: Scheduled Reports Based On Custom Queries in Blogs
- DOTW: Advanced URL Filtering Topics in Blogs
- DOTW: GlobalProtect Virtual Adapter Was Not Set Up Correctly Due to a Delay in Blogs
- DOTW: What is the Best Way to Configure User-ID Mapping? in Blogs
- DOTW: Knowledge Sharing With Container Components in Blogs
Top Liked Posts
| Subject | Likes |
|---|---|
| 10 Likes | |
| 8 Likes | |
| 6 Likes | |
| 6 Likes | |
| 5 Likes |
Top Liked Authors
| User | Likes Count |
|---|---|
| 28 | |
| 18 | |
| 13 | |
| 10 | |
| 8 |
LEGAL NOTICES
Copyright 2007 - 2022 - Palo Alto Networks
