General Topics

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

Uninstall Global Protect 5.2.5 via Intune Scripts

Good day,

I need to uninstall Global Protect from bout 100 user devices.

We deploy and remove application using Microsoft Endpoint Manager (Intune).

I have created a script using this uninstall command:

This command reported that it ran successfully o

...

Vulnerability wrong action Palo

Hi,

We are having a weird issue in Palo. We have a FTP server and we can not access because Palo detects this vulnerability:

Name: SSH User Authentication Brute Force Attempt

Unique Threat ID: 40015

The Palo action is "alert" for this vulnerability but

...

Resolved! JSON Miner with basic auth and an API key

I would like to have a miner to connect to the Pingdom API to pull a list of their US node addresses. The Pingdom API uses basic auth and requires an "app key".

Their documentation references two HTTP headers, authentication and app-key:

> GET /c...

Resolved! GlobalProtect portal data collection available in logs?

Starting with PAN-OS 9.0 there is the ability to assign specific agent configurations based on software and app settings on GlobalProtect portal configuration.

It's possible to collect registry data from Windows endpoints under the new tab "Portal Dat

...

portal-data-collection-custom-checks-windows

Encryption mode between 6.0 and 9.1

My company are going to migrate upgrade one firewall from 6.0 to 10.1.

And I found below KB points out the supported payload options above and below PANOS 7.0.

Several IKE/IPSec profiles are using aes128 for ESP encryption, is it aes128 equal to aes-12

...

In packet capture on FW, RTP is dropping for first 5 seconds

I am working a customer issue where first 5 seconds on the calls is dead air. After 5 seconds, the call is normal. There is paloalto firewall. When we did packet capture on firewall, it was found that the RTP packet in capture on "drop" stage are dro

...

Spare-Device / OSS appears as normal Device with expired licence in CSP

Dear all,

I tried to register a device as spare via "Assets -> Spare" in the CSP, but instead of appering as Spare it is now listed under "Assets -> Devices" with an expired licence. I tried to open a support case via "Get Help", but because the devi

...

CTD usage and commit and update errors

VM-300, 10.0.8-h4 on KVM.

At one point issue with commit showed up:

Error: Error reading signature DFA data
failed to handle CONFIG_UPDATE_START

Also updates for Wildfire & Apps/Threats were not being installed. HA sync started to fail.

It was concluded t

...

Does Palo Alto support URL rewrite option ?

I have a query is When any user (OUTSIDE/INSIDE) accessing the URL or application like JIRA and CONFLUENCE which is hosted on the AWS server on the internet. that user's traffic hit into the ON- Premises data center instead of the internet and should

...