Policy creation/management

Hi Folks,

We have a running sites where firewall running and managing through panorama. clients building a new sites and new firewall deployments however panorama will be remain same and policy will be the same just few sub-nets needs to be changed

OTP authentication with GlobalProtect

Hello all,

The customer has an inquiry about OTP authentication when logging in to the GP after booting the PC. When I log in again after disconnecting, I can log in without OTP authentication (session authentication is maintained), so is there any wa

User Mapping - AD access denied

Hello all, 

You are using Microsoft Active Directory, but you receive the following error log:

Useridd.log 
>

• Error:  pan_user_id_win_wmic_log_query(pan_user_id_win.c:1603): log query for AD_3 failed: NTSTATUS: NT_STATUS_ACCESS_DENIED - Access denied

Tagging in Cortex XDR

Hello,

Can you please tell us the way how we can TAG certain endpoints?

What are the steps to tag?

User-ID: User-IP mapping is 'unknown' for some AD users

Hi Everyone,

We are facing issue with Agentbased User-ID agent 10.1.0-21 and the PanOS version 10.0.1

User-IP-Mapping shows unknown for some of the users.

>show user ip-user-mapping ip x.x.x.x

IP address: x.x.x.x (vsys1)
User: unknown
From: Unknown

Vulnerability Protection profile alters APP-ID behavior

Hello everybody,

  while writing some articles on our company wiki, I found a strange behavior of the firewall. This is my environment:

PA model: PA-820

PAN-OS version: 10.1.8

APP/Threat version: 8653-7756

Decryption: SSL inbound enabled

I have

How to get AV definition of multiple machines at one go

Hi Team, 

I'm checking one incident where I got multiple machine names. Now I want to check AV details of all the machines at one go. I'm using "sep-endpoints-info" automation to get those details. It is working fine when the input is only one mach

Error: Unable to invoke scripts/commit-p1.py for dlp

Hi everyone, 

I had an error when commit the change in Palo Alto firewall. How can I resolve that problem?

My PA firewall uses IOS 10.2.2.h1

reverse proxy key 'abc.com' doesn't match certificate issued to 'abc.com'

How do I find from the firewall which backend server is not matching the certificate/key here. Alert doesn't give much information. We have about 20 servers behind with inbound decryption.