Not able to set Proxy for Windows 2012 servers

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Not able to set Proxy for Windows 2012 servers

L3 Networker

Hello ,

We are unable to see  few servers in our endpoint list. But the user confirmed it has cortex installed in it and is enabled also particularly For Windows 2012 servers we're not able to set the proxy and for some hosts last seen connected date is being shown for a previous date.

Kindly suggest how can we set proxy for these servers.

1 REPLY 1

L5 Sessionator

Hi @Shashanksinha ,

 

Thank you for writing to live community!

Before I jump to the solution, I would like to know the connection status of those endpoints and also if those Windows 2012 servers are in the same subnet? 

 

Considering the above answer as disconnected or even connected and servers in the same subnet, it is very likely that the servers may be in a network subnet where firewall rules may not have been whitelisted correctly and the agent though connects to the cloud, is not able to receive updates from the cloud server. 

 

In this case, the best mechanism is to set the proxy manually on the endpoints using the CLI. Command line syntax listed below:

 

C:\Program Files\Palo Alto Networks\Traps\cytool proxy set <IP/FQDN:Port#>

You will be prompted for uninstall password, supply the uninstall password and it should work on the next checkin. If not, please stop and start the agent again. IP/FQDN should be supplied for the broker VM as applicable.

 

You can also use a batch file using scripts to run the command with password as shown below:

echo <Unintstall Password>|"C:\Program Files\Palo Alto Networks\Traps\cytool.exe" proxy set "IP/FQDN:Port"

If you are on agent version 7.7.x or above then you can also use a token hash instead of password for security purpose.

 

Hope this helps!

  • 1166 Views
  • 1 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!