SSL VPN and User identification

Hi.

When a user is logged on to the SSL VPN through my Palo Alto firewalls, the user dientification seems to be - well, flakey.

Sometimes it identifies, most of the time it doesn't.

I have "Enable User Identification" ticked on the VPN zone, yet I am se

Application grouping question.

hi.

I'm sure the answer to this is going to be simple, but for he life of me I can;t figure it out without testing it live, which would lead to some rather, erm, loud consequences if I get it wrong. 

I have a "deny by default, allow only specified' po

How do I check what category an IP address belongs to if it does not have a URL associated?

How do I check what category an IP address belongs to if it does not have a URL associated?

Authentication profile not found for the user (localdb)

User 'user' failed authentication. Reason: Authentication profile not found for the user.

When setting up an administrator I get the above error message.

The authentication profile has the user on the allow list and is also applied to a new member of t

Email notification per specific threat

Is there any way to send an email notification per specific threat? From what I can see, you can only send emails per "severity".

Private Cert for SSH

is it possible to use your own cert for SSH on PAN OS - if so where do I load it?

Identifying & Blocking iPhone Applications

I'm wondering if the PAN FW can identify & block iPhone applications when the iPhone is connected via Wifi to the company network -- i.e. Angry Bird, Pandora on the iPhone, etc.

How to select multiple IP address in Custom report?

Hi All,

I want to select multiple destination IP addresses in a single custom report. How can I do that?

For example:

10.1.1.1

10.1.1.2

10.1.1.3

Above are destination IP addresses and want to group them all in single report. Thanks!

J

Is there anyway to see chat log in Skype or any IM?

Hi all,

Can PaloAltoNetworks firewall see chat log in Skype and MSN messenger in coming version of PAN OS?This is due to a lot of requirement from our customer that want to see what their staff is chatting in the organization. So far there is one prod

App Override - should it be "instant"? Also, SFTP?

I have some stuff that is getting mis-categorized, so I setup app-override rules.  After committing the config, if I go over to the ACC tab, should the formerly-uncategorized traffic be automatically put in the right place?  Or does the app-override

Captive Portal and Windows 7

We have captive portal setup in redirect mode. It's working fine for iPhones, iPads, Mac OS X, and Windows XP, but we are having problems with Windows 7 clients. They get a message that they need to authenticate before having Internet access, but whe