Read about the new PAN-OS 9.0 Release Features: User-ID. Learn about the few highlights of features we added to User-ID, including: WinRM Support for Server Monitoring, Increased Terminal Services Capacity, User-ID Scaling in Terminal Services Capacity.
WinRM Support for Server Monitoring
Provide an option for an alternative method to retrieve security logs and session info - Windows Remote Management (WinRM) to retrieve data (both over HTTP and HTTPS).
This method, improves performance and consumes less memory and CPU.
WinRM transit traffic is identified by the firewall as windows-remote-management in case the management interface is not used.
WinRM-HTTP / WinRM-HTTPS
Increased Terminal Services Capacity
This feature increases the limit on the number of TS Agents supported on some of the platforms.
Another change introduced in this feature is that the TS Agent now supports host names for alternative host addresses.
PA-30x0, PA-220R, All other VM models
Alternative Host Addresses
Shared User-ID Mappings Across Virtual Systems
To easily enforce user-based policy in a multi-vsys environment, you can assign a virtual system as the User-ID hub to share mappings with other virtual systems. This reduces configuration complexity and maximizes the number of mappings available to each virtual system.