Can PA recognize user-id from AD using TAP-mode?

Hi All.

I tested that PA with AD using TAP-mode.

AD-agent, CLI at PA device could recognize users from Active-Directory. but Traffic logs, Threat logs, URL logs could not recognized user-id and session-browser showed user filed was unknown.

I think that

SSL decryption and Carbonite

SSL decryption seems to interfere with Carbonite.  When the policy is enabled, the Carbonite client reports "waiting for connecton to carbonite pro backup server...".  I assume I could add a rule to not touch anything in category "online-personal-sto

Skype-Probe sessions increase dramtically when blocking skype

Hi All,

Seem to be having a bit of a problem with skype-probe.

I have a PA-500 in Vwire mode behind a PIX FW, the customer wishes to block Skype traffic.

Observations:

1.     On the ACC the ammount of skype-probe traffic far exceedes any other traffic in

Error trying to unlock an admin

Under Authentication Profiles on Panorama 3.1.8 I noticed one of my admins is apparently locked. When I try to unlock by clicking on the link I get the error:

vsys unexpected here locked-users unexpected here authentication unexpected here show unexpe

SNMP OID for monitoring temperature

Does anyone know what the OIDs are for monitoring temperatures and other environmental conditions in the different PAN devices?  The reference documents do not include this information.

HTTPS browsing

I made a quite shocking discovery about PA and how it inspects SSL encrypted traffic.

Please correct me if I'm wrong.

1. To allow simple HTTPS web browsing traffic it isn't enough to allow "web-browsing" application in the policy, you must to allow "

Manually Remove PanAgent/NetConnect

Hello All,

Seem I was bitten by the Java security update and a Win7 64bit OS during the installation of SSL-VPN NetConnect and PanAgent service. My computer will now no longer successfully connect to the PanAgent service and NetConnect hangs on establ

admin override an URL and set a cookie

Hello world,

when using the "admin override" function, I thought that PA is seting a session cookie for the browser.

Unfortunatly, it looks like, the PA is just storing the source IP.

When using a proxy, all connections of the overriden page are from th

botnet question

Hello team.

on the firmware 4.0.1, we have botnet monitoring function.

my question is to utilize the botnet feature, do I need to buy the URL filtering license and update it to up-to-date?

thank you

BH Lee

firmware 4.0.1 SFP warning message

Hello team.

on the firmware 3.X, when I put the unsupported SFP to PA, it show warning message..

but on the firmware 4.0.1, I don't see that warning message..

"Non-qualified SFP detected on port %d: vendor '%s'; part '%s'"

it means.. we're starting to su

SQL Database Protection?

Is there any functionality within IPS/IDS or data filtering or anything in the Palo Alto that can go a little further than IPS/IDS which looks for "bad things" and that does some sort of verification/validation of SQL traffic?

The sort of thing that s