Integrating Palo alto with Microsoft authenticator for MFA in global protect

requirement is to integrate Palo alto with microsoft authenticator for MFA purpose in global protect VPN.

AD users will get authenticated with MS MFA in Palo alto while accessing network through global protect.Please let me know if feasible ,if yes w

Facing issue auto logout session while using Ariba Portal

We are facing one issue from last one month i.e. we are using “Ariba Portal” for our client but the issue is that every 1 or 2 min session auto logout even if using other public network then it is working fine 

HA mode with vwire

Not sure it this is the right location for this question but here we go ...
I'm trying to replace 2 transparent ASA's in ACT/STDBY with 2 Palo's in the same setup vwire ACT/PAS. Current setup is the asa's are connected to 2 vpn servers in ACT/PAS conf

Chromebook usernames in Palo Alto logs.

Hi,

I was wanting to know if it is now possible to have the Palo Alto firewall log url traffic with the username from chromebooks.  It shows the username for all windows users as it syncs with AD, but can't get the chromebook users to show up.  I set

how to disable the url-cloud-connect

the customer firewall pa3220,version :10.2.1, the mgt interface could not access internet,so that firewall could not upgrade the url database.

but the system log dispaly some high log:url-cloud-connect-failure,the customer want don't see these log.

fir

VPN event messages keep receiving

Hi,

I have two IPSec tunnel configured between Azure PA firewall and cisco router.

worried about continuously getting the informational event logs ikev2-nego-child-sart,  ikev2-nego-child-fail & ikev2-recv-p2-delete

Did the setting DH group to No PFS

The backup file received through XMLAPI is different from the actual configuration.

Hello,

I'm sending a backup file to Windows Server using XMLAPI.

However, when compared to the actual exported configuration, the file size was different, so I checked and found that it was being sent to the Windows server in the format shown in

PA-5400, 3400 series DP memory check

Dear Team,

For existing firewall models, I can check the DP's memory through the 'tail follow yes dp-log dp-monitor.log' command.

However, new devices(PA-3400, PA-5400) do not have a dp-log path itself.

Is there a way to check dp memory on new

HSCI Link flapping

Hey all, I had to RMA one of my PA-3220s and rebuilt my HA just recently. After getting everything up to 9.1.11-h3 my HSCI link just doesn't stay up between the two 3220s. One side has green HSCI links, but the other side is dark.

-Replaced fiber j

DNS Sink Hole Data Base

Hello Gentlemen,

Could you please tell me where I can locate the DNS SinkHole database? I need to use it to determine whether a specific website is operating properly. Any suggestions on where I could look for that? Under DNS Sinkhole activities, a