Panorama - Restrict Firewall Log Access

Does anyone know if there is a way to create admins in Panorama for specific subdomains AND restrict their access to only the logs for the firewalls in that subdomain? I want to give access to users for only their FW logs and not let them see all of

Global Protect and Android 4.0.4 - problem

Hello

I have working VPN for Windows machines. I need to extend it for Android devices, using client from Android OS.

I'm using login and passwords (not certs) in my VPN config.

I followed by the GlobalProtect-Config-Android-RevB.pdf  - part 3

When I try

User-ID stopped populating mappings - OS 4.0.12

I am running OS 4.0.12 and have an issu with the user-ID / mappings not populating in the logs. 

show user pan-agent statistics:

IPs      Activity Timer(s) Domain          Index

ncmpdcden01      10.250.12.10    5009  vsys1   *connected, ok     989    9

Is there a way to create a filtered report based on specific countries?

On PA 4.1.

I have a custom report that uses the traffic log database, with the top 500 entries for the last calendar day, with the Destination Country column enabled. 95% of the Destination Country results is the USA. I'm interested in looking at traf

There is a question about a SSL decryption for OWA(outlook Web Access).

Hi there.

I have a configuration for SSL Decryption including SSL Certifcation and SSL Decryption policy.

It is working well on a gmail, a facebook and etc, but there is not working a ssl decryption on an OWA.

I can see the owa traffic on the session

How to inject OSPF information from PA to other OSPF-Routers

Hello,

we created a IPSec tunnel between Cisco and PA:

Now we have a problem to make the network behind the Cisco Router reachable from the Corporate LAN and the other way (from Corporate LAN to the "Cisco LAN"). Both routers running OSPF. With OSPF we

Commit only a specific set of config changes?

Hi,

Is there any way to commit just a specific set commands to the Palo without committing all changes that are pending? I have an in house written piece of software that is going to make content filtering changes to my Palo's via the XML API. My conc

Blocking an application for all websites except one

I have an Application filter for Streaming Audio and have created a policy to block it. That's going well but I need to allow http-audio which falls under Streaming Audio for one specific site only.

I have created a URL Filtering security profile with

terminal Agent - session 0 "no need to handle"

hi all,

I've encauntered the issue with terminal agent mapping.

Everything is working fine for normal users using terminals but for local console Administrator it is pain in the a...

It seems that Terminal Agent is skipping this mapping (local console