CVE Description clarification

I'm looking at CVE-2023-6795 and in the description I see "enables an authenticated administrator to disrupt system processes and potentially execute arbitrary code with limited privileges on the firewall"

This means that all admin included the reado

XSOAR Access denied

Hello

We have a user with the same permissions that the other users in XSOAR and in CSP who cannot log in XSOAR.

It keeps giving an error:

Unauthorized 401403.

Has anyone seen this?

Regards

How do I uninstall Cortex XDR from Windows devices using a GPO

Good day,

We are transitioning off Cortex XDR and need to do a mass uninstall for 200+ devices on our network.

Right now our only solution is to do so manually, one by one, using the cytool protect disable function etc.

Is there a way to do this

Api Access

The Superuser (readonly) have the API Access enabled by default?

How to scan SFTP over SSH file transfers for virus or malware

Hi all,

I just set up SSH decryption, also known as SSH proxy on the palo alto.

When I look at the actual sessions, I do see a checked box near to decrypted, so according to me the decryption itself works.

I also got a warning about a man in the middle

ION to ION (hub's) Standard VPN with BGP, route filtered and not reachable

I have a Hub to Hub standard VPN to connect the two together in place of a MPLS. The are peered with a Classic BGP session, site one sending a /20 prefix it has learned from it's core router. Site two sees that from the BGP Peer, but the route will

Bytes sent by Firewall is too high, seems abnormal.

Hi  everyone!

Greetings to all. I was just curious since I've been seeing traffic logs packets which are Gb's and Tb's in size. I am not sure if this is a wrong display but I am pretty sure there was no such traffic in my network.

I am currently ru

Advanced Routing - NAT for overlapping networks between 2 logical routers

Hi,

We have a Palo VM with advanced routing enabled.

We have 2 customers with overlapping networks (172.16.0.0/24). Those networks must be accessible by the same servers (in connected network 10.1.1.0/24).
Customer1 network is routed via a static

Humps and bumps with the Palo Alto firewall integrated User-ID agent and Active Directory.

Introduction

The User-ID agent links an IP-address to a user account. It enables identifying your users so that they show up in the logs and you can use them in rules. One can choose between the integrated agent or install the Windows edition. Proble

Windows User-ID agent not collecting mapping

I'm working on getting a Windows User-ID agent set up for a customer and it's not collecting logs.  Checked all permisssions and service account user is in Event Log Readers and has permissions to both the install folder and registry entries.  Just a

Route-Based VPN between PaloAlto & Strongswan

Hi! 

If anyone have some experience about this topic? I need a vpn between our PaloAlto and a virtual machine with strong swan installed. To route some traffic from our local network to this vpn tunnel. How to make this possible?

Monitor Power Supply of PA-400 by SNMP

Is there a way to monitor power supply redundancy by SNMP?

I found this, but these values are not a SNMP object.

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClbfCAC

similar to this; these values don't exit on my PA-440.