How to Manage External Users via UIA/PAN

If the organization has Users who are contractors/sub-contractors (deskless workers); how can you manage these Users via the PAN if they are not members of the Domain?

Would AD deskless worker objects need to be created AD-side for them to be prompted

Pan OS 4.0.1 and searching

I've noticed that after updating to 4.0.1 when searching for user Traffic everyone keeps showing up.  I am clicking the apply filter.

Its also happening on the Threat, URL and Data Filtering.

Is anyone else seeing this problem?

We already have a suppor

HTTP Brute Force Attempt

I was contacted by a major government entity about an HTTP Brute Force attack/attempt coming from my institution.  Their IDS triggered on a researcher in my organization attempting to login to one of their training websites.  The user forgot their p

rule shadows

I'm trying to clean up our rules, specifically the shadows.  I've run in to one rule that is shadowing 6 others:

- Rule 'rule208' shadows rule 'rule211'

- Rule 'rule208' shadows rule 'rule212'

- Rule 'rule208' shadows rule 'rule292'

- Rule 'rule208' shad

How to reset the unused rules counter ?

Hi,

How can I reset the "unused rules" counter without reboot the firewall ? Is there a command for this ?

Regards,

julien

global Protect

Hi All,

I tried to configure Global protect on my PA500. According to docuementation available on site, I configured Global Protect Cert Auth but If I try to create a Global Protect server cert signed by GP Cert auth, I have an error (Failed to genera

youtube won't work with web-advertisements being blocked

Does anyone know how to get around this?  We have enable web-advertisements to be blocked within our URL filering.  When going to www.youtube.com and some other sites, the site is there but will not play content.

Any ideas how to get the best of both

Palo Alto Dev Adapter for BBNA

Hi,

does anybody know whether there is a working device adapter for Palo Alto Firewalls (Version 3.1.7) for integration into BBNA (BMC BladeLogic Network Automation)?

If there's none, I'll probably have to write a simple adapter myself.

Thanks!

Block tunneling applications (CC Proxy)..

Hi,

Is there any way i could try to block tunneling applications like CC proxy ?

Please let me know your valuable comments on this.

Thanks,

Roshith.

Can ts-agent support xen-desktop?

Hi all.

I find that PANOS 4.0.1 release note and PAN support XEN-APP6. but I could not find something about xen-desktop. I want to know that TS-agent can support xen-desktop or not. if PA can not, when will PA support xendesktop as user-id agent?

Thank

Detecting Botnets, Virus and Vulnerabilities after migration to 4.0.1

Hi, will like to understand what other users can mention about their experience with the detection capabilities for Botnet, Virus and Vulnerabilities.

We started to use a PA-500 with PAN-OS 4.0.1 with latest App,Virus and URL updates in Tap Mode but d

Upgraded to 3.1.8 and have a mismatch OS with HA

Upgraded the active 2050 to 3.1.8.

Passive 2050 now has a PAN-OS Version mismatch.

I cannot reach the passive firewall through the management port anymore, cli or browser.

Is there a procedure for this?

Thanks.

Support Palo-Alto on Opera

Hi,

I'm using Opera in many cases and I have some issue with my browser as it looks like it is not supported but when using functionalities from Opera to be seen as firefox it works but sometimes fails.

Can you have Opera supported pleae .

I have alos i