General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Join the Fuel User Spark Event on March 19: Dealing with Threats !

 

Join us at the Fuel User Group Spark Event on March 19!

 

Get ready to ignite your cybersecurity knowledge and connect with industry experts at our upcoming Spark event hosted by the Fuel User Group. Whether you're a seasoned professional or just

...

kiwi_0-1709893724672.jpeg
kiwi by Community Team Member
  • 279 Views
  • 1 replies
  • 2 Likes

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question. Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 3159 Views
  • 2 replies
  • 14 Likes

Resolved! Device certificates for Panorama-managed devices

Hi,

The screen below is from support.paloaltonetworks.com in Assets/Device Certificates.

I am trying to get the device certificates for the firewalls that are managed by Panorama, without doing it locally on each firewall.

In Panorama, where to I go to

...

ksalustro_0-1610398739744.png
ksalustro by L3 Networker
  • 3118 Views
  • 2 replies
  • 0 Likes

Resolved! Share User-ID among VSYS

How to best share user-id's or ip/User-mapping between different vsys. I want share user to IP-mapping for users connecting through global protect in separate vsys. But i think usecase can be extended to non GP mappings too.

raji_toor by L4 Transporter
  • 2571 Views
  • 2 replies
  • 0 Likes

Enabling Security Features

Hi ,

We have a customer running a cluster of PA 3060 . 

The goal is to enable security features on at least 30-40 percent of the rules initially . like

URL Filtering 

AntiVirus

Antispyware

Wildfire

Vulnerability Assessment 

 

Are there any Best practices rule

...

Panorama Variables for HA A/A

Hi everyone!

We have an HA A/A deploy, management vía Panorama.

Have i any Variable to use for NAT's like Device-ID? to perform macro configurations?

 

Regards

Rojaba by L0 Member
  • 1714 Views
  • 2 replies
  • 0 Likes

Resolved! Filter Output By Category

Hello everyone,
I'm working with the Proofpoint EThreat,
I'm trying to filter the output feed based on ET category.

to archieve this, i'm editing the Output Node stlib with this condition:

- actions:
- accept
conditions:
- confidence > 75
- share_level == 'r

...

bereon by L0 Member
  • 2051 Views
  • 1 replies
  • 0 Likes

Windows Server 2003 with Agentless User ID

Hi guys,

 

I am setting up agentless user-id with Windows Server 2003 Active Directory. My PAN-OS version is 8.1.16.

 

For the setup, i've followed the guide here:

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClGGCA0

 

Currently

...

codemsittc_0-1610365644609.png
codemsittc_1-1610366073752.png
codemsittc_3-1610366486241.png
codemsittc_2-1610366325671.png

tacacs

Hi,

 

I am using tac_plus linux server .

 

user = larry {

login = PAM

member = admin

}

 

The above will support ? .As I know tacacs using pap or chap . In that case If can I use login = file /etc /password Or PAM in the server side configuration

 

Th

...

lucucote by L0 Member
  • 1393 Views
  • 1 replies
  • 0 Likes

HPE iLO 5 Not working as GP Clientless VPN App

Hi,

 

I added HPE iLO 5 as a new GP Clientless VPN Application, but it is not working. It seems it calls java, but based on PAN documentation it is supported javascript on Clientless VPN.

 

There is any special thing to do for the javascript part? As you

...

banksants_0-1609623112815.png

Zone for vpn?

Hello ,

 

We have currently three diffent zones defined .

 

Zone A vlan 100. For wired users 

Zone B vlan 200 for wireless users 

Zone V tunnel/ loopback interface for Global protect users.

 

All the above users mentioned are corp users.

 

Now customer wants t

...

  • 24090 Posts
  • 99 Subscriptions
Top Solution Authors
Top Liked Authors
Labels