Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature
...
I was looking to configure
SAML-based authentication with sp-initiated flows for support.paloaltonetworks.com
Is this possible configure at this point?
Hello!
I have an open ticket with Palo Alto for our 5020 series and User-ID problems. My organization has been using PA for years and we never had issues with the User-ID portion until after moving into version 8 (it would seem). Support hasnt been m
...
Hello,
I need to block zoom file sharing in my company.
there are applications signatures for zoom-uploading and downloading but they are not working properly.
all trafic are going in zoom-base and not blocking file transfers. if i block zoom-base mee
...
Hello,
I need to enforce VPN so users will not be able to access Internet unless tunnel is establish or wired corporate network is connected. Users should also be required to supply credentials and MFA every time the tunnel is built when accessing fr
...
I have configured a Panorama instance with the Nutanix plugin as detailed in these steps:
https://docs.paloaltonetworks.com/vm-series/9-0/vm-series-deployment/set-up-the-vm-series-firewall-on-nutanix-ahv/vm-monitoring-on-nutanix/configure-the-panoram
...
Has anyone been able to configure their firewall so that users will be able to change thier password via the global protect app while using LDAP for authentication and NOT using Pre-Logon
Hello to all,
We have a linux website that we made working with inbound ssl inspection by disabling curve25519 / x25519.
Some clients report errors ( always showing as decrypt errors on the monitoring) accessing the site: by taking a networrk trace on
...
Hi Community,
I have a requirement to add multiple client certificate into Linux GP config. Usually, whe we put 'globalprotect import-certificate --location <cert_location>', the existing client cert will be overridden with the new one and it will be
...
Hello Everyone,
I am running PAN-OS 9.0.9 on my PA-3020. When enabling SSL forward proxy and try to access google.com, I get the tls13_downgradedetected error on chrome. I get the same problem even when using other browsers but different error descrip
...
Hi,
while deploying Global Protect through LAN it is possible to configure some App settings using the Windows registry or msiexec like pre-deploy the IP address of a preferred Gateway for example.
Is it possible to configure internal host detection
...
Dear Team,
Please help us to below points...
Regards
Karthikeya
...
Trying to configure my PaloAlto Firewall (PA-VM-ESX-9.0.0) using PowerCLI scripting, no issue creating & deploying VM, setting up PortGroups, and starting PA VM. Needing to perform IP configuration scripting to complete the setup of the PA VM, so ju
...
Hi,
Recently I upgrades my firewall from PANOS 8.0.10 to 8.0.17. The upgrade went fine. However, after making a small configuration change (adding a new address object), my commit showed a Shadow Rule warning.
The warning is associated with a rul
...
Hi Live community,
recently when investigating a false positive C&C threat blocked from "shodan malware hunter" I was pleased to see others had posted into this community about this. In the past 24 hrs we have 2 SIEM alerts for C&C outside to publical
...
Dear Friend,
Can you anybody advice me on palo alto multi vsys capability issues and currently contests of this technology? If one virtual instance compromise how we can make sure it not impact to other vsys ? How multi vsys behaviour on privileged e
...
OtakarKlier
on:
RFC1006 protocol over TCP
OtakarKlier
on:
Windows update URLs with IP addresses show up as unknown
OtakarKlier
on:
Panorama Upgrade
OtakarKlier
on:
Layer 3 between 2 buildings
OtakarKlier
on:
URL Category rule works on some firewalls but not others
OtakarKlier
on:
CPE for the Conferences or Summits
