address group to list address and ip

I am looking for a way to pull a list of address-groups to address names with the IP. 

I would like to combine "show address-groups" and "show address"

Administrator authentication using Common access card through Cisco ISE

We are currently using Cisco ISE for administrator authentication using Tacacs+ and usernames and passwords.  Does anyone know if it is possible to configure smart card authentication through Cisco ISE?  

Pan-OS 10.0.0 series version WebGui working slow

PA-850 model. From last 2 months its working slow we upgraded it to 10.0.6 version. If any have reason behind this please share.

Or any one have details from TAC then please share in comment.

Our PA 220 and PA 850 model we upgraded with 10.0.6 version

URL Category of Security Policy with destination "Any"

Dear All,

I created a security policy as below. However, I find all traffic will go through this policy. Do you have any idea? Thanks

Source: Any

Destination: Any

Service: 443, 80 and specific port

URL Category: Custom (*.s3.amazonaws.com)

Peter

Aggregate Vwire interfaces or not to passthrough LACP in an A/A HA setup

Hello.

I have a pair of PA220's - i was trying to lab up a scenario where i could test using aggregate Vwire interfaces to pass LACP (2 x 10gb copper interfaces) through between a Fortigate and a Cisco router, with the Palo in the middle passing the

LDAP authentication for CLI

I got LDAP authentication working so that when logging into the Web GUI the microsoft active directory accounts works with no problems.  When a user logs into the CLI and tries using their LDAP account the system log shows invalid username/password. 

PaloAlto support account

Hello,

I am trying to create the PaloAlto support account to be able to access the support portal, I provided all required informations however I get error and I should contact support, I tried to call the support using the local number in Germany no

PA HA with Topology Design

Hello Community,

I have two sites, I did an initial design, and I want to make sure that I won't find any problems in real installation*

on site 1 (topology1) We found a problem that the distance between ISP installation and IT room more than 200m  So

GP/ LDAP authentication

Hi, 

I have a test AD/PA setup.

AD and LDAP connectivity is okay so far.

My problem is that I am unable to authenticate any user against Global Protect.

The un/pw are correct.

The group are correct too, as far as I can see.

This is the output i get when

LDAPS Falling back to LDAP

Our firewalls are configured for LDAPS on port 636 to our Windows DC. We have the require SSL/TLS option checked in the LDAP settings window. The useridd log shows:

2022-03-22 14:42:09.136 -0700 connecting to ldap://[dcserver]:636 with StartTLS...
202