Best or recommended way to connect PA to Windows Domain

What is the recommended way to connect a PA box to a windows domain?

I see know there is a radius way of doing it, and i know this is the way other like to configure it.

But there is alot more work configuring, and reconfiguring if i want to change/add

Active/Active HA3 issue

Hi all,

I have a client which run a stretched active/active HA cluster with a dark fiber between them. So HA1, HA2, HA3 links are not really cables, but layer2 VLANs. It seems fine, as it has somehow worked a long time, but this is what I’ve noti

Global Protect Portal or Gateway changing user-id format when forwarding to RADIUS

Here you are the scenario:

- PA-500 running PANOS 4.1.7 and acting both as GP Portal and Gateway

- authentication request is forwarded to a Cisco ACS RADIUS server, i.e. PA-500 is its RADIUS client

- RAS login is the full mail address of the users, e.g.

Heartbleed bug - filter status?

Anyone got some information regarding a threat filter release for CVE-2014-0160 a.k.a Heartbleed bug in OpenSSL?

youtube detection failure

creating security policy to allow specif users to use applications web-browsing and SSL with destination any with using SSL decryption policy which decrypt all.

after this policy there is implicit deny .

the issue that palo alto cant` detect youtube ap

User-ID Agent

hello.... Can a User-ID Agent connect to more than one firewall?

if so, how do you set up the other ones?

enforce safe search

I created a rule for URL and tick the enforce safe search.  When it enabled, if I want to do the google search, I have to log in my account and pick lock safe search. Otherwise, it will block me.

I think it is hard to use in my case, which is a scho

enforce safe search

I created a rule for URL and tick the enforce safe search.  When it enabled, if I want to do the google search, I have to log in my account and pick lock safe search. Otherwise, it will block me.

I think it is hard to use in my case, which is a scho

Vulnerability Management - Mapping the threatvault to configuration management

Hi,

Working on a Vulnerability Management project at the moment, I was trying to streamline the basic actions as much as possible. The following would be incredible if PAN would incorporate this.

A add-on for Microsoft System Center Configuration Mana

Test PA-200 parrallel to current firewall

I received a PA-200 device for review and testing. I like to set it up besides my current firewall and see what it can filter.

Via SPAN Monitor on a Cisco switch I copy all traffic on the UNTRUST side to the PA-200. Now I get a lot of tcp-reject-non-s

Remote Management using Public IP (on different port)

Hi,

I have setup my device management to use the public ip. it's working fine but i want the management to be done using a different port. currently its using https(443). how can i configure this?

Please help.

Thank you.

Ampersand in API request

Hi, colleagues!

I have a "Custom URL Category" and I try to add new URL from API request but if URL have ampersand(&) I have a error: <response status="error" code="18"><msg><line>Malformed Request</line></msg></response>

PanOS: 5.0.8

Original URL: exam