This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4250 Views
  • 0 replies
  • 0 Likes

Resolved! How to include users directly belongs to OU (orgnisation unit) in include group option in LDAP group mapping for user id Agent,..?

Hi All,..We have installed User ID agent 4.1.5 showing ip to user mapping or traffic, now we are looking to place a user based policies but in AD users are directly belong to OU which we cant add in the include group option in group mapping.. is der any way to get user names in policies?Regards,Guru.

Gururaj by L4 Transporter
  • 2488 Views
  • 1 replies
  • 0 Likes

Resolved! On device in policies not showing user names, but in user-id agent we are able to see ip to user mapping.

Hi All,On device in policies not showing user names under the source user tab, but in user-id agent we are able to see ip to user mapping. PaloAlto device is connected to machine on which user-id agent has been installed. Is there any other configuration is required to get user names in policies ? Please help me.Regards,Guru

Gururaj by L4 Transporter
  • 4293 Views
  • 3 replies
  • 0 Likes

Resolved! 'infra-group: restarts exhausted, rebooting system' and Firewall REBOOTS random

Greetings Again,Off late I have been hit with quite a few surprises after the release of version 4.1.x. Now this is the latest one that surprises me. Over the last few months one of my customer's PA-2050 has randomly rebooted which obviously has a large impact on our users ( I was never told of these till today). The customer is presently run...

Source user not shown in some logs

Hello,I have developed a script that collects user-ip mapping from a wireless controller and send this info to User-ID Agent. All these looks fine because I can see the users in the User-ID Agent monitor table, but when I look traffic logs on Palo Alto I can see some logs do not have a user identification and other logs have it, for the same sou...

Resolved! Anyone having issues with cacti after upgrade to 4.1.8

Grettings, just wondering if anyone else is having any issues with cacti after upgrading to 4.1.8. All my graphs stopped working even though cacti is able to quere snmp just fine. After I downgrade back to 4.1.7 everything is working fine again. Thanks

pvaughan by L0 Member
  • 3570 Views
  • 2 replies
  • 0 Likes

Resolved! Responding to DMCA takedown requests

I'm a recent Cisco ASA convert. I'm in an academic environment so bittorrent (and P2P in general) is permitted. We get an occasional DMCA takedown request. Finding the culprit in the ASA world was pretty straightforward: grep the syslog for the NATed port and see if there was a match near the alleged infringement time. I'm having a difficult tim...

MCmgt by L2 Linker
  • 3550 Views
  • 4 replies
  • 0 Likes

Resolved! Re: show routing route destination output

Hi,Sorry I know this is an old thread but figured I'd ask here as my issue is the same... I am interested in finding the specific route in the route table that will be used for a specific destination network lookup. So I do "test routing fib-lookup ip 2.2.2.2 virtual-router default" command but the output only shows the interface that will be u...

Resolved! certificate import for using captive portal

Hello community,we have running a PA-500 with a captive portal configuration. This config was build up last year on a PAN-OS 3.1.7. We haved used Debian Linux with openssl to generate a key-pair and a CSR. To correctly import the certificate I had to convert the certificates in Base64 format and copy&paste the intermediate certificate on the...

Resolved! Blocking traffic from specific AD Computer

Hello Everyone!Is there any way to treat trafic from an specific Computer in AD ?I need to block internet traffic and allow only internet corporate email (gmail) to some computers (doesnt matter the user logged in there)I can fix thos MACs to the DHCP so they will receive always the same IP and I can treat those traffic... But I would like to kn...

Panorama Edit turns to New and fails

I've seen this a few times and have finally decided to ask.Running Panorama 4.1.6, managing several devices. I switched context to a 2050 running 4.0.12 and created a new zone to be used for a second SSL VPN. The results of the commit show that I didn't "Enable User Identification". Returning to "Edit Zone", I select the check box and hit "OK". ...

scud by Not applicable
  • 2202 Views
  • 1 replies
  • 0 Likes

CLI "target" command

Can someone please explain what the CLI "target" command actually does? It says that its for a "management session target". What does that actually mean?

jwolach by L4 Transporter
  • 2676 Views
  • 2 replies
  • 0 Likes

Resolved! MS-RDP NAT Issue

I am trying to create a static destination NAT to enable RDP access on port 3389 for one of my internal servers, but no matter what I try, it just doesn't seem to work. I've read through several KB articles as well as https://live.paloaltonetworks.com/docs/DOC-1517 and I've set everything up as it seems it should be, yet no NAT session is ever ...

  • 24360 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks