user-id agent log showing machine account, expected behavior or bug?

Hello community,

I´d like to check with you regarding the following:

Since upgrading the user-id agent from 8.0 to 8.1 the user-id logs in the firewalls are showing "Managed Service Accounts" (computer accounts with "$" appended at the end) in the way

Self-Signed Certificate expiry warning

Our GlobalProtect VPN was using a self-signed certificate which got expired caused end users not being able to connect to the VPN.

This raises the question that what are the ways to get alerted for these sort of incidents. Is there any in-build mechan

Can we integrate clearpass as a radius server for Global Protect 2FA

Can we integrate clearpass as a radius server for Global Protect 2FA ?

PaloAlto FW RDP Across multiple AD domains

I'm part of a cloud team that does not manage the FW but am not getting clear answers from them.

My operations counterparts have the following issue:

Support person logs into IP address x.x.x.x into production domain. As part of their function, they m

Rule tagging best practice and guidelines

Hi ,

Can someone share best pratices and guidelines on how to use tags on PA ?

Firewall Palo can advertise aggregate route...

Hello,

In our lab, we made a set up about peering BGP between Palo and a third part device.

According to this kb from Palo : "The Palo Alto Networks firewall does not advertise an aggregated route to its peer when it receives a prefix falling within t

Palo Dual Action on Same Malicious Domain

We have found in the logs, Malicious DNS queries are being blocked but few of them are in Alert State. however the Domain is marked as a malicious in DNS signature at Threat Vault.

Can you please elaborate why paloalto having dual action on same malic

Replacing a zyxel home router - IGMP proxy for IPTV problems

Hi,

   I am trying to replace my ISP-provided Zyxel home router with a PA-200.  I'm also subscribing to IPTV from the same ISP, with a Thomson DBI-8500E-TLN2 IPTV PVR.

The zyxel - while branded, appears to run standard zyxel firmware - the config doesn

Locked out after adding Allowed IP Addresses to Management interface

I did not see any good information on how to fix this issue. I accidently entered the wrong subnet under Device > Interfaces > Interface > Allowed IP Addresses and was locked out of my primary firewall. I could still login to the backup as this was n

critical : Chassis Master Alarm: Temperature on PA-5050

Hi Team

We are getting below critical alarm in firewall. Please let me know how to resolve this issue

Regards

Mohammed

PA-220 lab licensing

Hi,

I'm looking to purchase a PA-220 lab unit (lab license) for home.  Basically, using it for labbing with my personal internet/internal traffic.  Are there limitations with that device/license,  such as bandwidth limits

Read-Only Superuser by Security Zone

Hello, I hope everyone is staying healthy.

I work at a company that provides ISP services to public schools, each school district is divided in to separate security zones on our Palo and I am trying to see if a read-only user can be created that is a