Pre-logon for specific user only

My requirement is that some user should use Pre-logon and other should use User-logon. Currently all users are using only user-logon mode.  

Is it possible to use both mode in global protect, because we have to call client certificate profile on globa

Allow only MS Intune and Windows Update - block all internet access

HI,

I am after permitting only MS Intune and Windows Update - block all internet access.

I have followed the custom URL filtering as mentioned in the link below:

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClRfCAK&refURL=h

Qos question

Hi,

I have traffic shaping enabled on FG and at the same time PA also.

traffic flow is as below 

client  goes through  FG then PA then go to internet or wan 

traffic shaping  policy running on  fortigate  , and qos policy is there on PA also 

Let's say if

Session created by Syn Cookie

Hello,

what process and what is going on if a session (SIP) is created by "Syn Cookie" ?

Is this a valid Session, does this indicate a Problem ?

We configured an App-Override Policy to mitigate Problems between Phone-System and SIP ALG.

We see now all

IPSec site-to-site tunnel not allowing all traffic both ways

I followed the guides to set up an IPSec site to site VPN tunnel between our main office and satellite office using static routing, but I can't access our servers through the tunnel. From the main office, I can access everything on the satellite offi

Block Facebook Posting

Hi everyone：

PA Firewall seems to be unable to Block New Facebook posting.
Does anyone have a way to block it?

BR

Richard

GlobalProtect Xauth for iPhone and Android

Need Help deleting files on PAN /dev/sda8 and /dev/root

Hi All,

Need help on how to free up spaces on the below partitions on my PAN device, support cannot seem to figure this out. Please help..

Filesystem Size Used Avail Use% Mounted on
/dev/root 4.0G 3.4G 407M 90% /
none 4.0G 56K 4.0G 1% /dev
/dev/sda5 24G

install PanHandler on Windows 10 system.

Published install instructions for PanHandler are for MAC and Linux systems.  I run Windows.  Here is how I installed PanHandler on my Windows 10 system.

Install Docker for Windows from the Docker Hub -- https://docs.docker.com/docker-for-windows/ins

Device certificate

Hi all,

     I want to know, what device certificate is for and what it does?

Thanks !!!

Disable Cipher Suite

As of the pen test via SSL LAB  i was observed that less secure ciphers like DES, RC4 were supported by global protect portal ,so that i have disable the all the weak cipher suite and it's successfully done but the when i disable CBC-256 Suite when i

How to inspect email contents within outlook.office365.com?

I have decryption turned ON for outlook.office365.com url but firewall cannot really inspect the contents that are inside the email. Is it because Microsoft encrypts the email and Palo doesn't know how to decrypt it? has anyone tried decrypting outlo