Issues GP in Iphones

On iPhone, the  gw for SAML authentication does not open the system browser (Safari). It opens the embedded browser. We configured the "default browser" in APP config like YES. 

In android is working fine but no in iPhones. Why? any incompatibili

Problem with the DuckDNS certificate for the DDNS service.

Hi,
I'm having an issue with Palo Alto and DDNS — specifically with DuckDNS. Everything had been working fine for the past two years, but for about a month now, Palo Alto is showing an SSL certificate error.
The exact error message is:

Server response:

PAN-OS 11.2.8 ETA

Hi All,

i would like to know the ETA of the PAN-OS 11.2.8 as per last PA TAC mention that the 11.2.8 tentative release date of june 25 

but so far no info of the release yet 

this is to fix for GUI display issue with SAML SLO url.

thank you

Distributor in India

PAN-SFP-PLUS-SRPAN-SFP-PLUS-CU-5MPAN-1RU-RACK-KIT- 4POSTPAN-PA-1420PAN-PWR-CORD-INPAN-PA-1420-ATP-5YR- HA2PAN-SVC-PREM-1420-5YR

EDL server certificate authentication failed. A local copy of associated external dynamic list will be used

I'm receiving this error from our firewall every 2 minutes, I can't figure out what the cause is. The reason says "self signed certificate in certificate chain" but I don't know what self signed cert it is talking about. This has been working for yea

About side scrolling in the UI

Hi. I'm used to do side scrolling in Chrome by using this combination: shift + mouse wheel.

But when I try that (for example in the Policies tab) i get "diagonal" scrolling.

I think that current implementation of scrolling relies on javascript. You s

Download executable GP from mobile phones

Hi,

I wanted to know if it's possible in Palo Alto, when you connect to the portal via https://vpn.xxx.com and authenticate from mobile phone, that instead of displaying the laptop executables, you get a redirect to the app market or the option to do

VPN tunnel monitoring/alerting

When NOT using tunnel monitoring and keying off events ids for "tunnel-status-up/tunnel-status-down",  what is the best logging to alert on for tunnels going up or down?

Is it only alertable/trackable by 
( eventid eq 'ikev2-nego-ike-dpd-dn' )


Or is the

decryption error with Anydesk

Dear Community!

I´m trying to use Anydesk and it only works with decryption policy disabled, somehow the predefined exclusion for Anydesk is not working.

While checking the decryption logs I can see the following error:

"tlsv1 alert insufficient se

Can ACC data really display data per user group?

Hello!

I´m trying to filter data, in particual user activity, by using filter "user group" however I only have the data filter by user or IP, not using the group.

Do you know if you can actually filter data from any widget of the ACC by using the

versions 10.2, 11.1, 11.2 - which is best?

of the current trains 10.2, 11.1, 11.2, which would be the best in terms of robustness and stability?  I am running PA-440 and PA-3250.  The later trains dont have any features i need over and above what is available in 10.2. 

Unable to HTTPS or SSH into new out of the box PA440

Had a new PA440 delivered to a remote location. I am able to ping the device (192.168.1.1) but am not able to HTTPS or SSH into it. Assuming that my IT person at the remote location has the device plugged into the MGT port and in the switch, which si