UIA stopping unexpectedly and not starting automatically after a reboot

Our network has 10 Windows child domains.  We have a UIA installed on 2 Domain Controllers (mix of 2003/2008 Windows Servers) in each child domain.  On about 8 of our 20 UIAs we have had the UIA process stop unexpectedly or not start up automatically

Using ACS with PA

Greetings,

So, I'm looking to use ACS as a means for authentication for accessing our single PA device.  I found this doc (https://live.paloaltonetworks.com/docs/DOC-1472) which has the configuration as well as the dictionary file.  I guess I just hav

Cisco SCPS traffic being dropped

I thought I'd ask this here as I feel like it may show up again sometime if someone has an answer.  We're deploying Palo Alto behind a pair of Cisco ASAs and there's a minor issue.  It looks like (through packet capture on the Palo Altos) SCPS traffi

Exporting Events to Excel Where do the Flags Come From?

I exported some events to Excel and all of the events either have 0x0 or 0x8000 as a value in the flags column. If I look at the pcap for one of these events in WireShark I see different flags. What flags are being referenced in this column?

I keep getting "key invalid" using PANrest AP1 for reporting

Greetings,

This is my first post on KnowledgePoint, so apologies for any breaches of etiquette

Relevant info:

Panorama version 3.1.7

Attempting to use the API to run a report per this article:

https://live.paloaltonetworks.com/docs/DOC-1031

I have generat

[ipv6] traceroute gives link-local address

I've setup ipv6 routing on a PA-2050 (software 4.0.4). When I do a traceroute from a client I always see the link-local address off the PA instead of the unicast adress. Does anyone know how to change this?

2     2 ms     1 ms     1 ms  2001:6a8:2500

SSL Decrypt

Does using a Trusted CA from GoDaddy work with SSL Decrypt? Right now when I enable the SSL Decrypt for any catagory it flat blocks them with nothing more than a Cannot display page. I tried to decrypt gmail as a test but it just blocked it even thou

Panorama sharing security policy across device groups?

Is there a way in panorama 4.0.2 to create and either copy the policy to a new device group or have a shared policy that can have a target of all devices?  We currently have 12 device groups (due to muliple vert systems.) and i would like an easy way

Why does Threat Database not include any details in the description of viruses ?

Both vulnerabilities and spyware have descriptions are useful in understanding what those signatures correspond to. But the Viruses do not contain a description. Is there any reason for that ? It would be usefull to associate them with atleast the we