10.0 user-id agent ignore_user_list not working

Showing results for 
Show  only  | Search instead for 
Did you mean: 

10.0 user-id agent ignore_user_list not working

L2 Linker

Since upgrading to pan os 10.0.6, we've noticed the "ignore_user_list" on our server user-id agents doesn't seem to be working.  We did not have any issues prior to upgrading to 10.0.x.  Has anyone else noticed this issue?  We upgraded our user-id agent to 10.0.3-10 (latest version) at the same time.  We have a support ticket open, but have yet to find a solution.


L2 Linker

Appears to be a problem with the user-id agent and UPN format.  If I add the sAMAccountName and UPN format for an account to the ignore_user_list, it gets ignored.  We didn't have to have the UPN prior to the 10.0.x user-id agents.  We also have some domain\account*   entries...  I tried account*@domain.com but that doesn't seem to work.  So I've updated my TAC case to see if they can assist.  Not sure if this is a bug or configuration issue, though there's very limited config options for the UID agents.


Just posting in case someone else has this issue also!

  • 1 replies
  • 101 Subscriptions
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!