Difference between 2FA certificate configuration methods

Hi folks - very grateful for some support on this one.

I've been led to believe that establishing 2FA on GlobalProtect using credentials and certificates as the authentication methods requires setting up a certificate profile and selecting "No" on th

Port fowarding from internet to inside server

I am trying to setup port forwading from spacific internet IPs to a server inside the firewall. This is for RDP access. We are using port 9999 to hit the firewall and translating that to 3389. Here is the NAT and Security policies I have.

When I lo

Recommended PAN-OS for 5220

We are currently running version 10.2.9-h1 and i would like to know what the prefered recommended version to upgrade too?

Also why does palo alto deny me access to this information when i have an account with them?

I upgraded to 10.2.11 but thi

Request to Remove High-Risk Status and Update Website Category for ice-aec.com

Dear Palo Alto Networks LIVEcommunity Team,

I am writing to address a concern regarding the domain ice-aec.com, which has been flagged as high-risk by Palo Alto Networks Unit 42 Security. After conducting a thorough review, we believe that this cla

Export Information for a PA-460 Unit

Could someone at Palo Alto please provide the following information for your PA-460 unit (3 items total):

1. ECCN (Export Control Classification Number)

2. Harmonized Tariff Code (HTS Code)

3. CCATS information for this product - we need to see if yo

broker vm

Hi, 

i want to sign in broker vm the first time. but default password  !nitialPassw0rd don't work.

can you help me with his problem.

Thanks.

Paloalto (HA) and Fortigate (HA)

Hello All,

what is the recommended connectivity for if there 4 firewalls and HA is active/passive on both devices:

PA-active connected to (Fortigate active and passive)

PA-passive connected to (Fortigate active and passive)

Thank you  

Find tempalate name to which a certificate is associated with

Hi All

Can any one please tell me the api code or curl command to find tempalate names to which a certificate is associated with. Generally we do this via global search option but can't find anything to do on cli or via api.

Firewall (10.1.10-h1) Unable to connect UID agent (10.1.2)

UID agents version 7.0.8 upgraded to 10.1.2.
DC (10.2.9)and Perimeter (11.1.2-h3) firewalls connected to Newly upgraded UID agent but unfortunately all branch firewalls(10.1.10-h1) couldn’t make connection to upgraded UID agent and is showing certific

GlobalProtect VPN on Win11

When I attempt to connect to a GP VPN site I get an error "Can't reach this page" - but only on my Win11 laptop.  I used to be able to connect with this PC but not anymore.  Tried removing all the updates - still no luck.  I have 2 other laptops, bot

Pushing dynamic updates from Panorama to firewalls or download direct to firewall

Looking for advice on best practice regarding dynamic updates (AV, IPS, WF) when managing firewalls from a Panorama. Currently we are download and pushing these dynamic updates from Panorama to about 15 firewalls but will be managing more firewalls f