Resolved! GlobalProtect certificates

In my company we have AD and our internal CA. I want to use our internal CA for GlobalProtect. What I have done so far:

     I've import our root CA to PA500 (PANOS 5.0.3).

     I've generated web server certificate and imported it in PA500

     I've cr

Resolved! Global Protect Usage Report

I have created a custom report to track all VPN users by subnet.. I parsed it to user and total bytes.. however, I can only get maximum 500 lines.. we have 1000 GP users, anyway around this?

Resolved! FIPS mode IPSec cipher suite subset

When you enable FIPS mode on the firewall, what are the subsets of cipher suites available that the admin guide is referring to?

Admin guide -

"When configuring IPSec, a subset of the normally available cipher suites is available."

Resolved! Unable to connect Global protect portal,..

Hi All,

I am able to download GP client software, But using the same credential not able to connect to portal, giving error : portal error - unable to connect to portal. Only through one machine i am able to connect to portal using same credentials wh

Resolved! Tunnel Interface IP Address

Can somebody explain to me the need for the tunnel interface IP address? Apparently a VPN tunnel requires a tunnel interface configured with an IP address when using dynamic routing. Is that a dynamic gateway the PA is connecting to or the PA is usin

Resolved! what is standard port of ms-dtc app-id?

Hello.

I checked that ms-dtc standard port is tcp 139 on applipedia. I created couple of security rule for ms-dtc app-id and one was applied application-default at service column and other was applied specific service port tcp-49210, tcp-49217, tcp-49

Resolved! Why the User-ID Agent status of passive device on HA mode shows not-conn:idle?

Hello there.

I have a question related to a User-ID Agent.

My PA-5050 is configured with HA mode (Active-Passive).

Couple of devices are connected User-ID Agent.

There are user agent connection status on the both of devices.

Active Device

Name            

Resolved! SNMP request failed

Hi, I try to request to PA-5020 with S.O. 1.4.7 some snmp traps for extract certain information about fo temp, cpu used, max sessions, etcetera.

But when i try to extract the information since my snmp tool called snmpcheck the result is "Request Faile

Resolved! Optical transcievers question (PAN-XFR-SR)

Hello!

What is the MMF core size supported by the PAN-XFR-SR modules?

Thanks!

Resolved! Device Group and Template admins in Panorama 5.0

After upgrading Panorama to 5.0 I can't find the option to limit access for an administrator to a specific device groups or templates in the webgui. In 4.1, it was possible to configure this under "Administrators" in the device tab. This option seems