General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

 

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! 

 

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 247 Views
  • 0 replies
  • 0 Likes

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

 

Rules and Best Practices

 

  1. Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion
...

JayGolf by Community Team Member
  • 926 Views
  • 0 replies
  • 0 Likes

Failed to send CHAP authentication request:

admin@PA-(active)> test authentication authentication-profile ISE-TACACS username XXXX password
Enter password :

Target vsys is not specified, user "XXXX" is assumed to be configured with a shared auth profile.

Do allow list check before sending out a

...

pacavi by L1 Bithead
  • 18042 Views
  • 4 replies
  • 0 Likes

TACACS authentication with Cisco ISE not working

Hello, I would like to ask currently I have two firewall that needs to be configure TACACS. One of the firewall is working fine and I'm able to login using my credentials from ISE. However, another firewall is not working for the TACACS authenticatio

...

fhassan by L0 Member
  • 44 Views
  • 0 replies
  • 0 Likes

Stop Connect "On-Demand" after "Pre-Logon"

Hi !

 

we use the pre-login feature with client cert logon - this work quite good. after logon we would like to connect on demand with saml login. we made two configs, one for prelogon and one for the user, both with prelogon:


At the moment if you l

...

2025-05-13 15_00_16-Panorama und 7 weitere Seiten - Geschäftlich – Microsoft_ Edge.png
2025-05-13 15_03_51-Panorama und 7 weitere Seiten - Geschäftlich – Microsoft_ Edge.png

Alerts in AIOPS Still Exists

Hi community,

 

I have a critical alert on CVE Vulnerability on our firewall. However, after performing the PANOS upgrade to the version that patched the CVE, the alert is still showing in AIOPS.

 

So, my questions are, shouldn't the alert disappear

...

Resolved! [API] - User-ID

Hello Guys,

 

Sorry if the location is incorrect. I was looking for a location regarding API.

 

I'm trying to set up an user with his IP through API. This is for a lab.

I did follow this page:

 

https://docs.paloaltonetworks.com/pan-os/10-2/pan-os-pa

...

Issue with GP Access for JIO Users on PA-820

Dear Friends,

 

One of our customer is facing an issue with users on PA-820. According to the customer, many users are connecting to the internet via mobile hotspot using JIO SIM cards. While they can successfully connect to GlobalProtect, but they a

...

Resolved! Issues with Pre-Defined Decryption Exclusion

Hello,

 

I'm trying to figure out any reasons that the decryption exclusion would not be working. As the traffic is being denied:

 

What could I be doing wrong in my config to have this exception not work? 

 

CPATT_0-1747149300179.png
CPATT_2-1747149664690.png
CPATT by L1 Bithead
  • 376 Views
  • 5 replies
  • 0 Likes

HA session sync too slow?

I've recently migrated to a pair of active/active HA firewalls and am seeing some DNS return traffic dropped. Checking the logs, I can see that traffic is returned via another firewall as the DNS request was received. No problem, as normally the HA s

...

dmgeurts by L1 Bithead
  • 233 Views
  • 3 replies
  • 0 Likes

Firewall Configuration via API

I have enquiries regarding the API on PA firewall.

 

I would like to know whether I can enable User-ID in zone, adding server in Server Monitoring and adding Syslog Parse Profile via API or not?

 

Are those actions supporting configuration via API?

Person Vue exam error

Hi,

 

for the last week I tried to the Palo Alto SSE and the PCNSE and I get an error (see attachment).

 

does anybody knows about problem with PersonVue exams online?

 

thanks

m.Zrihen by L1 Bithead
  • 459 Views
  • 5 replies
  • 0 Likes

Panorama not pushing network template changes to devices

Hello,

 

I am very new to Palo Alto FWS so please be gentle  

 

I have been asked to setup two new PA3060 firewalls to be centrally managed by a Panorama server.  Both the Panorama and Firewalls are running v8.0.5.

 

I have successfully followed the PA in

...

gc227s by L1 Bithead
  • 17887 Views
  • 8 replies
  • 0 Likes
  • 24027 Posts
  • 115 Subscriptions
Top Liked Authors
Labels