This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Cookie Policy. Click Preferences to customize your cookie settings.
adding more than one UIA agent on firewall?
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- Discussions
- General Topics
- Re: adding more than one UIA agent on firewall?
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Printer Friendly Page
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
05-30-2018 06:40 AM
Hi Techies,
I have a small doubt whether I can add more than one UIA server in my firewall in the sense that they should behave kind of active passive .
Requirement is something like that I want to secure user id functionality on firewall so that if one of my UIA gets down , then firewall should contact other UIA server for that....
Let me know if we have any solution for it ...
6 REPLIES 6
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
05-31-2018 12:07 AM
The UIA reads the windows event logs continuously to provide the most current User-IP mappings to the firewall. The firewall then talks to both UIAs and always uses the most current timestamp for an IP. So lets assume the following:
UIA1: domain\johndoe 20180531-06:10:34 10.10.10.10
UIA2: domain\johndoe 20180531-07:23:26 10.10.10.10
In this case the firewall would have received the mapping first from UIA1. As soon as the new mapping is present on UIA2 the firewall updates it's user-ip-mapping table with the new event from UIA2.
Options
- Mark as New
- Subscribe to RSS Feed
- Permalink
05-31-2018 12:37 AM
Thanks man...i got it now...
Related Content
- Server Monitoring of User-ID agent set-up shows Authentication failed /Connection refused error in General Topics
- Cannot install Traps 7.9 in aliyun's linux in Endpoint (Traps) Discussions
- Firewall servicing as UserID Client - limit in Next-Generation Firewall Discussions
- VM series firewalls not sending logs to Panorama in General Topics
- New firewall added to panorama, no backups in Panorama Discussions
Like what you see?
Show your appreciation!
Click Like if a post is helpful to you or if you just want to show your support.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks