SAML authentication to paloalto support portal and other products like XDR.

Is it possible to integrate own SSO using SAML to get access to support.paloaltonetworks.com and other products like XDR? Is there any feature request portal in case this integration isn't yet possible? I noticed that currently to secure such sensiti

Regarding Bootstrap issue

Hi Team,

We are facing issue with bellow error while starting the firewall up.

Also sometimes the firewall is not coming up so we need to reset the firewall and have to upload the configuration files to bring the production up.

Please provide a solutio

Identify Intune managed ActiveSync devices

Our management decided to move our mobile devices from a 3rd party MDM (which included an email client, VPN tunnel, AS proxy, etc.) to Intune. Now I have to open our Exchange server to the world via Palo. Is there any way to identify our Intune manag

SDWAN traffic - where does it go, can I show?

A few days ago on one of our Palo Alto firewalls the primary (MPLS) line was down (not the provider router, somewhere between there was a broken cable) and traffic was routed over backup (Internet). 
Because provider router was up, the interface on Pa

temperature

hi,

I had a firewall palo alto with the version 9.0.12 and i upgrade the version to 9.1.11 after this the temperature pass of 30 grades to 60 grades.

Why after upgrade the temperature changed?

Kind regards

Psiphon blocking in a non-decrypted network

Hello Bros'

               Recently, I have issues with the application called Psiphon, this app is eating my internet based on authentication portal page.

As I check previous threads in the community, all speaking about a decrypted traffic or blocking

Decryption Exlusions

As you all know, Palo Alto gives you two ways to exclude sites from decryption.  Are there any scenarios where excluding from SSL Decryption Exclusions works but setting the same url in a decryption policy doesn't?

I ask because I've had the scenario

Monitor aux ports through SNMP

Is it possible to see the aux ports on a PA-5200 series firewall through the SNMP interface mib?  These are currently the interfaces that show up, the aux ports are not there.  This is on 9.1.11, PA-5250 to be specific.

ifName.1 = STRING: ha1-a
ifName

Research

Hi community. I am a student and I would like to know which product/feature of Palo Alto brought it to the center of the map as in, gave them the recognition. 

P.S. This is for my coursework and it's a 3000-word assignment. So, I want to focus on the

bgp troubleshooting

Hi I'm having issues with bgp routes not propagating I know that I can click on view routes under the virtual router section, but was wondering if I could see the bgp errors in syslog, doesn't seem like I know the search string if that is possible, o

PA default interface state

Hello community 

I've been searching but couldn't find an answer so:

What is the default interface state (out of the box firewall)? Is it forwarding L2 packets? Can I create a L2 loop by connecting two interfaces between FW & a switch?

Cisco BGP neighbor x.x.x.x local-as yyyy feature on Palo Alto

Hi,

Does Palo Alto support Cisco BGP neighbor x.x.x.x local-as yyyy feature? or there is any way to achieve the same (Palo Alto FW has a local ASN, but it uses another local ASN just for a specific neighbor)

Thanks!

PANOS 10.x - share interface in Multi-vSYS mode

Hello All,

We are working on a design to move Cisco ASAs firewalls into PA 5260 with Multi-vSys mode enabled, so each Cisco ASA is a separate vSys. 

While everything else looks like nice and easy-to-convert, we have problems with shared interface. In