General Topics
Showing results for 
Search instead for 
Did you mean: 
General Topics

Forum Posts

Happening in June: The Complete Zero Trust Network Security Event

Greetings everyone, Don't miss Palo Alto Networks' Complete Zero Trust Network Security event coming up in June. This event will cover the following points related to the newly unveiled Zero Trust Network Security: Secure access to the right applicat...

jdelio by Community Team Member
  • 1 replies

Resolved! GlobalProtect, Working from Home, Prisma Access and Covid-19

To all, Just wanted to post a message about the Hot Topic right now, which is Covid-19. With all of this going around, everybody's health and safely is the utmost concern. Keeping your hands clean, washing your hands (A LOT), using hand sanitizers, a...

jdelio by Community Team Member
  • 41 replies

Authentication Profile

SAML with RSA MFA authentication profile is getting synced on the HA active/passive firewall. The issue is that each node needs it's own unique authentication profile. As soon I change it on one node it sync's to the passive node. Is there any way to...

Shawverr by L3 Networker
  • 2 replies

BlueKeep HIP policy

I've created a HIP policy to filter GP users if they are missing the security patches for BlueKeep. However, with monthly roll-ups I have to go in and generate a new HIP object each month. We currently patch our Windows machines 30 days behind Micros...

Palo Alto SSH Vulnerabilities

Hi Team, We are finding the below vulnerabilities being detected on Palo Alto Management SSH service : CVE-2007-2768CVE-2004-1653CVE-2007-2243CVE-2016-2183 Kindly help us in resolving the above said vulnerabilities. Devices are running with the OS 8....

Resolved! GlobalProtect VPN prelogon 2FA/MFA

Hello everyone, I have a question for which I can't find any documentation to solve it.Our security manager wants to increase security at the VPN prelogon.Since version 9.0 PANOS, its possible to make a VPN prelogon with 2FA or SAML authentication. -...

jk0neil by L0 Member
  • 1 replies

Resolved! Decryption certificate validation issue

Hi Guys, I'm experiencing issue where one of the site is not accessible when the decryption profile is enable with no decryption for SSL forward proxy. After disabling the block untrusted issue I'm able to access the site. I'm facing this issue in PA...

SPI Value in phase 2

I wanted to know that I could see the SPI value in the wireshark in site to site policy based VPN. So basically in base two there are two SPI value inbound and outbound, so if the attacker is capturing my traffic then he'd able to see my SPI value. t...

Panorama logging quotas

Does anyone know if you can configure logging quotas per device group(s) or firewall(s) My panorama is running 9.02 in legacy mode.

wibba by L1 Bithead
  • 1 replies