cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Inconsistent BPA Results

Announcements

Changes to the LIVEcommunity experience are coming soon... Here's what you need to know.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Reply
magates
L2 Linker
‎10-16-2018 01:28 PM
‎10-16-2018 01:28 PM

Inconsistent BPA Results

I am getting unexpected results with Best Practice Analysis. For instance, Going to Best PracticeSecurity Policies shows red X for all tags and many descriptions, but the majority of my policies have both.  

Also, the adoption diagram shows 0% for High Availability, but I have HA configured to nearly all best practice specifications. Dynamic Updates is similar, shows 60% but I have it configured to complete best practice specs.

 

Just wondering if this is user error, a bug, or if BPA is not 100% production ready yet.

1 person had this problem.
0 Likes
Reply
alestevez
L7 Applicator
‎10-19-2018 06:51 AM
‎10-19-2018 06:51 AM

Hi,

 

We upgraded the BPA to the latest version 3.6.1 in our Expedition 1.0.107, can you update and try with that to see if still doesnt make sense the output? Thx

0 Likes
Reply
magates
L2 Linker
‎10-19-2018 07:46 AM
‎10-19-2018 07:46 AM

Just updated to 1.0.107, getting the same results.

0 Likes
Reply
alestevez
L7 Applicator
‎10-19-2018 07:47 AM
‎10-19-2018 07:47 AM

Have you run the BPA after the update and you get same results? What are the ones you think are incorrect? Thx

0 Likes
Reply
magates
L2 Linker
‎10-19-2018 07:54 AM
‎10-19-2018 07:54 AM

I have; I also created a new project, imported, and ran BPA with same results. The items listed in my original post are incorrect.

Additionally, as a test I implemented allowed IP addresses on my management interface, but the check still fails as though it is not implemented.

0 Likes
Reply
alestevez
L7 Applicator
‎10-19-2018 07:59 AM
‎10-19-2018 07:59 AM

Im adding Customer success to check since the BPA is something we cannot change by our own :-) I will update here with the findings

0 Likes
Reply
magates
L2 Linker
‎10-19-2018 08:01 AM
‎10-19-2018 08:01 AM

Thank you, I appreciate your assistance.

0 Likes
Reply
anmendoza
L2 Linker
‎10-24-2018 08:45 AM
‎10-24-2018 08:45 AM

Hi magates, can you please send an email to customersuccesstools@paloaltonetworks.com so we can help troubleshoot your issue?

0 Likes
Reply
KlausGroeger
L3 Networker
‎10-28-2018 04:32 AM
‎10-28-2018 04:32 AM

Have the same issue here. Running latest version 1.0.107 with BPA 3.6.1. All policies have tags red x-ed while only four out of 73 policies has no tag.

Tags (1)
0 Likes
Reply
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

Latest Blogs
Latest Posts
Privacy Policy Terms of Use
Copyright 2007 - 2021 - Palo Alto Networks