General Topics

Fuel Workshop - Watch Now: Managing Your Palo Alto Networks Assets and User Accounts

In case you missed it, check out this new Fuel Workshop series, which covers the following topics:

Customer Support Portal Overview
License Management
RMA Best Practices

Dive into the three-part Fuel Workshop video series and learn how to efficient

...

Ensuring a Safe and Secure Community: How You Can Help

Dear LIVEcommunity Members,

Ensuring a top-tier experience on LIVEcommunity and protecting our members’ safety and security is our top priority! To this end, we have implemented additional security measures to safeguard our vibrant global commun

...

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

Resolved! UserID Active Directory multiple VSYS

Hello people,

I have a novice question so apologies if it is too obvious to some.

I have created 5 vsys and I want to use the same Active Directory server in all 5 vsys (vsys A, B, C, D,E) for userid in policies.

The Active Directory is only routabl

...

citrix web browser application dependency

I have 2 pa 850 . devices was not able to install antivirus update due to application dependencies on web browser. our citrix servers are not set up for web browing due to security concern. is their any other solution available. our pa configuration

...

Can we configure captive portal for windows machine in palo alto which are in domain?

Can we configure captive portal for windows machine in Palo alto which are in domain?

Customer do not want SSO authentication on Palo alto for machine which are in domain, while going to internet.

He want captive for traffic going to internet.

He want

...

Resolved! What is file file descriptor?

Hi.

I have a problem with management serves, sometimes when I try to connect to firewall by SSH I can see message "Cannot connect to management server". Process restarts itselft and connection to mgmtsrvr return, mgmtsrvr return to normal resource uti

...

PA-220 - 9.1.6 - DO NOT UPDATE

Hi guys,

We have had 3 PA-220's recently that have all failed and needed to be factory reset when upgrading to 9.1.6. I have a case open to investigate further but this version is still the recommended version which is worrying.

Luke

Site to Site IPSec VPN Configuration to extend Enterprise Network to a remote office

I have two PA800 NGFW running in Active-Standby HA mode and they are connected to a Perimeter Switch. Need an insight about a V-P-N Configuration on my PA that is about to connect to remote office. I am new to this and I brought this here because the

...

Panorama custom reports hang

Custom reports on my Panorama (9.1.6) were working fine until this week. Today, any report i run gets stuck in "please wait" indefinitely. Nothing has changed on the machine. Any ideas what i should look for?

Resolved! Local user Identification issue

As per the below mention snap-shot, we observed user id get changed with AD user and we have allowed the internet access to local user id which is configured in Palo Alto. Due to issue user facing internet issue.

We have not configure this user in AD

...

Capture Local user Identification issue.JPG

Resolved! Schedule cli command execute

Hi all,

I need schedule some cli command which i execute manually from SSH console like below;

Command line 1: test vpn ipsec-sa tunnel Xtunnelname:XtunnelProxyId

Command line 2: test vpn ike-sa gateway Xtunnelname

Is there any way schedule tasks in p

...

Failed to Launch Help warning pops up randomly while connected to GloabalProtect(5.1.5)

Hello everyone, most lately have started seeing a warning messaged "Failed to Launch Help" pop up randomly while connected to GloabalProtect(5.1.5). Tried looking for KB Articles around it and could not find any. Was wondering if I could get some ins

...

changing AD user passwords through globalprotect app

Hi Community,

I have the following scenario:

user_1/password_1 Active Directory credentials for login into windows system and domain

user_2/password_2 Active Directory credentials only for globalprotect authentication.

I´d like to know if there is a wa

...

Resolved! PAN 5050 DDNS

Hello Team,

I moved up from Fortinet/Ubiquity, bought a used PAN 5050 and upgrade the OS to 8.1.18 for a Home Use. However, since i am new to PAN during the configuration i realized PAN 5050 does not support DDNS. In my case i am home user I don't ha

...

EDL URL List Format and Subpages

I understand that for an EDL of type URL, the format is either

company.com

*.company.com

This will include any additional subdomains, whether at the beginning or the end of the URL.

Regarding the forward slash, will a URL like the following be a val

...

Captive Portal for Corporate devices

We have recently upgraded our HA firewall cluster (PA-3020) from 7.1.22 to 9.1.6 following the suggested upgrade path by PA.

We have captive portal in place, before the upgrade, all our corporate windows 10 laptops as soon as we power them on, they us

...

Minemeld MISP miner needs a revisit