This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4133 Views
  • 0 replies
  • 0 Likes

Resolved! Global Protect Support for Sequence Authentication with Local y SAML ( Azure-AD )

Global Protect Support for Sequence Authentication with Local y SAML ( Azure-AD ) Hello Live comunity, good afternoon, as I always say, thanks for the good vibes, for your time and for the collaboration. Is it feasible to use Global Protect, with a sequence authentication profile that allows SAML authentication ( Azure AD ) and local users ?...

Metgatz by L4 Transporter
  • 2466 Views
  • 1 replies
  • 0 Likes

User-ID: User-IP mapping is 'unknown' for some AD users

Hi Everyone, We are facing issue with Agentbased User-ID agent 10.1.0-21 and the PanOS version 10.0.1 User-IP-Mapping shows unknown for some of the users. >show user ip-user-mapping ip x.x.x.x IP address: x.x.x.x (vsys1)User: unknownFrom: UnknownIdle Timeout: 0sMax. TTL: 3sHIP Query: Disabled >tail follow yes mp-log useridd.log 2023-...

Resolved! DNAT FW Palo Alto - Double NAT

DNAT Support - FW Palo Alto - Double NAT Hello Lice Community good afternoon, first of all, thanks for the support and collaboration always. I have received a very strange request, I have tried to configure it by trying many ways and nothing. What does a client/costumer want: Dnat with double Nat ie. Internet ======= Palo Alto Public IP ...

Metgatz by L4 Transporter
  • 4574 Views
  • 4 replies
  • 0 Likes

Resolved! Unknown additional fields in GlobalProtect logs

v I am building a parser for our SIEM for GlobalProtect and have found something odd. The GlobalProtect logs have 12 more fields than the PanOS Administrators Guide labels. What are the additional 12 fields called?This is a GlobalProtect Log : 1,2023/02/09 10:25:54,REDACTED,GLOBALPROTECT,0,2562,2023/02/09 10:25:54,vsys1,portal-auth,login,saml,,R...

oahuliam by L0 Member
  • 3308 Views
  • 2 replies
  • 0 Likes

Vulnerability Protection profile alters APP-ID behavior

Hello everybody, while writing some articles on our company wiki, I found a strange behavior of the firewall. This is my environment: PA model: PA-820 PAN-OS version: 10.1.8 APP/Threat version: 8653-7756 Decryption: SSL inbound enabled I have a policy that allows access to the wiki with applications ssl and web-browsing. When no vulnerab...

grenzi by L3 Networker
  • 4656 Views
  • 2 replies
  • 0 Likes

How to get AV definition of multiple machines at one go

Hi Team, I'm checking one incident where I got multiple machine names. Now I want to check AV details of all the machines at one go. I'm using "sep-endpoints-info" automation to get those details. It is working fine when the input is only one machine. If the input field contains multiple machines, it is not fetching results properly. Can you...

Global protect route issue with macbook

Background informationWhere I’m currently living right now in a apartment complex there is a central internet network that I do not have access to these devices(Ubiquity). Lately I’ve been working a lot from home and sometimes I need to connect through VPN to clients networks to provide support. Most of the client’s VPN work fine from home excep...

SurajN by L2 Linker
  • 5174 Views
  • 2 replies
  • 0 Likes

How to request a new URL category?

We recently switched to GlobalProtect from another solution which also had DNS content filtering built in. It had alot more content categories which we are finding is generating alot of tickets due to blocks for items allowed in our old system. How can I go about requesting Cannabis and Photo Storage be considered for new Content Categories? Tha...

ErinWest by L2 Linker
  • 1307 Views
  • 1 replies
  • 0 Likes

How to delay playbook task execution

Hi, Can anyone help me on how to pause the playbooks tasks? eg: I have task A which is used to run a scan on machine and then the next task B will get me the result of that scan completion details. Between these two tasks, I need some delay time because scan will take some time to complete. So, I want Task B to be waited for 15mins and then i...

Cannot ping interface, IP or defaul gateway from PA 500 to Cisco switch

Hi all , I set up PA 500 to connect to Cisco layer 3 switch. I cannot ping any website or the IP from PA 500 except the Ip address assigned from Comcast. I look on the NAT, security and virtual routing but nothing wrong. 1. I plug my comcast router to Ethernet1/1 (untrust) and Ethernet1/2( trust) to Cisco switch. PA picked up the DHCP Clien...

phugiay by L2 Linker
  • 12939 Views
  • 12 replies
  • 0 Likes

How to Uninstall Cortex with disabling anti-tampering protection

Hi All, Anyone can help how to uninstall Cortex XDR with disabling anti-tampering protection?I am trying to uninstall from SCCM and due to the anti-tampering protection, it require password to disable the protection first before i can proceed with the uninstallation. Perhaps any bat script on this that i can use it. Regards, Zaffrul

Zaffrul by L1 Bithead
  • 77759 Views
  • 4 replies
  • 0 Likes
  • 24337 Posts
  • 124 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks