General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Threat Vector, a Unit 42 Podcast, is Now on LIVEcommunity!

We have some exciting community news to share: Threat Vector, a Unit 42 podcast, is now on LIVEcommunity!

 

Threat Vector is your compass in the world of cyberthreats. Listen to this biweekly podcast to learn about unique threat intelligence, cutting

...

jforsythe by Community Team Member
  • 295 Views
  • 0 replies
  • 0 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3634 Views
  • 2 replies
  • 14 Likes

Resolved! Device Administrators

Hello,

 

Can a "Device Administrator" unlock users in "Authentication Profile"?   Don't want to give user "Super User" unless there is no other choice.


Thanks

Rich

rcraxton by L1 Bithead
  • 500 Views
  • 6 replies
  • 0 Likes

User-id Agent Windows defender firewall issue

We have the PA User-ID agent installed and configured on a Windows 2019 DC.

 

The problem arises when I enable the "Domain Networks" defender firewall the agent losses the connection to the PA firewall under "Connected devices" in the agent view. Dis

...

Strachf by L1 Bithead
  • 988 Views
  • 2 replies
  • 0 Likes

Resolved! ECMP Strict Source Path

Hello.

 

In ECMP settings there is Strict Source Path option to enable. But I can't find any descriptin about this option anywhere. Anyone knows what exactly does this option do? 

santonic by L6 Presenter
  • 17470 Views
  • 9 replies
  • 2 Likes

PA-1410 HSCI compatable cables

Hello there,

We're upgrading from a pair of PA-3020 firewalls to new PA-1410s and require a DAC cable for the HSCI ports. However, we're unsure which vendor/brand offers compatible options.

Specifically, we're considering the following cables:

  • Cisco
...

AK74 by L2 Linker
  • 464 Views
  • 1 replies
  • 0 Likes

Resolved! Trouble routing from Guest zone to Internal Server

I'm not sure where to turn from here but my organization is trying to do a configuration we haven't set up before related to our student self-service system.

 

To try and summarize the issue, we have a guest-wireless zone that we need to allow anybod

...

cnorwich by L1 Bithead
  • 634 Views
  • 5 replies
  • 0 Likes

Resolved! Site to Site IPSEC Clarification

I'm moving from a Cisco ASA to a Palo Alto firewall for the first time. I've imported the config to Expedition and am prepping it for import to the firewall, but I noticed only the first of my crypto peers for each tunnel was imported to an IKE gatew

...

Palo Alto Search Filtering in Contains

Hello,

 

I write a basic python code for 'contains' filtering in in rule name search. And I want to share with community also community can give an advice for me.

 

The code: 

"""""""""""""""""""""""

def generate_output(numbers) :
    output_strings
...

tombombadil_0-1706780527481.png

Global Protect Asymmetric routing issue

Hey team hope someone can help me. I am pretty new to Palo and I am trying to setup Global Protect PreLogon in our corporate environment. I have managed to get it all working in the lab (awesome) now doing that in the live environment is different ba

...

Shadmin by L1 Bithead
  • 2952 Views
  • 4 replies
  • 0 Likes

Radius Group for GP authentication

Hi All,

We need to setup a specific user group in Radius should only access the GP. No other users should access GP. Currently authentication method set for GP is Radius and in the same radius we need a specific group of users only to authenticate.

M

...

Resolved! PAN-OS Uprage PATH to 11.0.2-h3

Confirming the Upgrade Path - Currently version 10.2.3-h2 upgrade to 11.0.2-h3 1.

Download 11.0 2. 

Download and install 11.0.2-h3  

 

Am I correct? do I need to reboot twice for this OS upgrade?

 

NGFW 

Azure AD SSO with customer portal

Hi 

Can anyone help out with setting up a 3rd Party Identity Provider on Customer Support Portal?

I've read through provided instructions (https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000sZ8mCAE), however, I'm stuck at Enabl

...

Resolved! Convert management-only Panorama to panorama-mode

So I've added a 2048 GB disk:

 

admin@panorama> show system disk details

Name : vdb
State : Present
Size : 2097152 MB
Status : Available
Reason : Admin enabled

 

When trying to switch system mode, this happens:


admin@panorama> request system system-mode

...

Radius Authentication and NPS

Hello everyone,

I'm having trouble configuring palo alto with a Radius NPS server. Basically we do not want to use chap protocols to avoid enabling reversible password. So we wanted to use EAP-TLS but it does not seem compatible with Palo Alto. Then

...

zakergfx by L1 Bithead
  • 342 Views
  • 1 replies
  • 0 Likes
  • 24181 Posts
  • 100 Subscriptions
Top Liked Authors
Labels