General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Resolved! Browser not prompting/selecting client cert for GP portal

Does anyone know exactly what is needed for browser to either select or prompt for client certificae when connecting to GP portal?

I know you need a client sert in personal user store and certificate profile on GP portal.

But still i find the behaviou

...

Globalprotect for Android failing to connect

We're having an issue with GP where all other clients (Windows, Linux, MacOS, iOS) are able to connect with the exception of android devices. Users authentication successfully, get the MFA prompt from DUO, and then get this error:

The network conne

...

Beginner

For beginners, what is the best course to start with?

Kerberos error

Recently we have down the one of our DC server. Since after we are getting Kerberos error. Please share solution to fix this.

Resolved! Configure SDWAN with only one transport (FTTH)

Hi,

We need to configure SDWAN with only one internet (transport) line. Is that possible in Palo Alto SDWAN or you need two o more lines? Someone who can confirm.

thanks

Unable to open TAC cases due to mandatory TSF file upload requirement

hi guys,

I am trying to open a TAC case in PA portal, however it seems there is latest change happen which requires a TSF file upload mandatory.

SInce we are a restricted site, we cannot share or upload anything on the portal. Because of this issue,

...

Where i find NGFW-Engineer Exam Information

I can't find information about this NGFW-Engineer exam on the official site. And yes, how to prepare for this exam, with which practice tests can I prepare for this exam? I have consulted many certified people and they have mentioned many sources.

XML API Results for Custom Report Not Matching Data From Panorama GUI

Hello,

I am attempting to use the XML API for Panorama to capture the output of a report. I am able to successfully pass the custom report name to the API and get some results, but the results are missing the Source User field outlined in the repo

...

Blocking Torrent/P2P Connections using app ID.

Hi Palo Alto Community,

I hope everyone’s having a great day! We’re working to enhance our network’s security by blocking torrent and other risky P2P communications. I’ve set up a deny policy using the “bittorrent” and “bittorrent‑sync” App‑IDs, bu

...

Resolved! GlobalProtect with Active/Active HA

I'm having a hard time finding much, if any, documentation on this scenario. I've tried a couple ways of doing it and they work, but I'm trying to figure out what the best way to do it while being as redundant as possible.

What I like the best so fa

...

GlobalProtect on HA

We get

SSL connect select error: 0(Resource temporarily unavailable), time left: 0
P26083-T33415 08/07/2025 00:31:33:272 Debug( 468): SSL connect failed
P26083-T33415 08/07/2025 00:31:33:272 Debug( 66): detailed SSL error info:
P26083-T33415 08/07/2025

...

Resolved! Pushed template to Palo and now unable to SSH or HTTPS to device

Migrating a firewall and pushed a cloned and modified template to a new Palo alto. Did not push device group. Now I am unable to ssh, ping, https the device.

I am on the device by console. Everything with the management interface looks on and I can

...

Resolved! Warning certificate chain not correctly formed in certificate

Hello All

I have imported a cerfificate into the PA as a PFX. I have also import the intermediate certs and root CA. The cert is signed by Go Daddy with 2 intermediate certs and a Root CA.

All imports fine, but when I get up global protect portal and

...

Resolved! Multi Vsys query.

When managing a multi-vsys firewall, is the correct way to map each vsys to a unique Device Group? Lets say I have vsys_prod and vsys_dev, I would do:

Device Group "prod_device_group" mapped to "vsys_prod"

Device Group "dev_device_group" mapped to

...

Resolved! LDAP Authentication works when testing it via SSH command but fails on web interface

Hi

When I'm running "test authentication authentication-profile "'LDAP Auth Profile" username myldapUser password" on the ssh cli, it authenticates successfully.

however when i try to log in on the web interface of global protect, i get this on the

...

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Resolved! Browser not prompting/selecting client cert for GP portal

Globalprotect for Android failing to connect

Beginner

Kerberos error

Resolved! Configure SDWAN with only one transport (FTTH)

Unable to open TAC cases due to mandatory TSF file upload requirement

Where i find NGFW-Engineer Exam Information

XML API Results for Custom Report Not Matching Data From Panorama GUI

Blocking Torrent/P2P Connections using app ID.

Resolved! GlobalProtect with Active/Active HA

GlobalProtect on HA

Resolved! Pushed template to Palo and now unable to SSH or HTTPS to device

Resolved! Warning certificate chain not correctly formed in certificate

Resolved! Multi Vsys query.

Resolved! LDAP Authentication works when testing it via SSH command but fails on web interface

API error messages

Virus/Win32.WGeneric.esuykr(752144200) via filename=msvcp140_2_app.dll

PA-3260 Hardware EOL

Request: List of GTIN / UPC Barcodes for Palo Alto Networks Products

Questions about PAN-303959

Re: Virus/Win32.WGeneric.esuykr(752144200) via filename=msvcp140_2_app.dll

Re: API error messages

Re: Virus/Win32.WGeneric.esuykr(752144200) via filename=msvcp140_2_app.dll

Re: Error opening support ticket

Re: IP Wildcard Mask Address Objects

Unlock your full community experience!

Resolved! Browser not prompting/selecting client cert for GP portal

Resolved! Configure SDWAN with only one transport (FTTH)

Resolved! GlobalProtect with Active/Active HA

Resolved! Pushed template to Palo and now unable to SSH or HTTPS to device

Resolved! Warning certificate chain not correctly formed in certificate

Resolved! Multi Vsys query.

Resolved! LDAP Authentication works when testing it via SSH command but fails on web interface