Resolved! Is there a way to tie the Cert auth to AD username for AD auth?

Hi Guys,

Is there a way to make sure that the GP checks that the AD user name matches the certificate common name when using both AD and Cert profiles for authenticating users?

Thanks,

Resolved! Use proxy only on certain URL's

Hi,

I wanted to know if this was possible? We currently have an issue with 1 of our online services and it turns out to be a routing issue between Virgin and BT. The server seems to create 2 connections and when it is one the first connection it is fi

Resolved! Emergency FTP on a Friday Night

PAN-200

PAN OS 6.

So there are, standing up an FTP server for client use.   Got it configured, and tweaked, and secure. Planned to figure out how to open up the firewall next week.

After hours.  Manager called.  I'm on a conference call.  Have some clie

Resolved! Latest content updates failing?

Anyone else seeing this one?

On both my firewall installations (2020 HA pair and 3020 standalone), the last two content updates (the failed one 473 and the replacement 474) are failing to complete, according to the job log, vis-a-vis

Yet the relevant c

Resolved! PA-200 Initial Configuration from console only

Trying initial setup of PA-200 using console connection (public on ethernet 1/1, no mgmt connected). I know I have to remove virtual wire, but having validation error below. Any suggestions ?

delete network interface ethernet 1/1 virtual-wire

delete ne

Resolved! Using a large destination-domain blacklist

Hello,

I am considering the use of a domain name blacklist published by the DNS-BH project in a custom URL category that will block access to any of the included domains.  However, the list is over 12K entries long, which obviously doubles when I add

Resolved! Globalprotect Mobile - no cert found

I've seen post like Re: IOS Global Protect APP - Required Client Certificate is not found but the fix was to manually import certificate to phone..How do I make my GP on droid to auto-download cert and connect ? I have same problem on Windows PC , ma

Resolved! Match UserId problem

Hi, we have 2 PA in cluster Active/passive. We have done the fail-over and when the secondary PA is working i can see userid is not maching. I have checked all the Userid agent config and state and everything is ok. I have restart all the userids age

Resolved! Two Global protect Portals on one gateway - possible?

Folks.

I have a need to implement certificate based login for most of our corporate PC's to Global protect - so they pre-login and get domain scripts etc when the remote users logon.

However, I also have a number of PC's which aren;t corporate owned (a

Resolved! IP Mappings Disappear Too Soon in log

Hi,

We have two PA-3020 in HA state, PAN-OS is 5.0.4 and we have configured 4 User-ID Agents (for now, in this troubleshoot stage, we are focused on only one agent).

Problem is in IP – user mapping. Sometimes in logs we see user and in very next momen