General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

How and Why to Accept a Solution to Your Post

Did you know that you can help your fellow community members by accepting solutions when a reply answers your question Accepted solutions are a super-helpful resource in the community, and we want to make sure our members understand how this feature

...

JayGolf_0-1691518400714.jpeg
JayGolf by Community Team Member
  • 1969 Views
  • 1 replies
  • 11 Likes

Bootstrap Component logs for Palo Alto Firewall instances

Hi

 

 

I am looking to know the best way to troubleshoot bootstrap process on Palo Alto virtual instances on AWS. We have followed the bootstrap package standards as mentioned in https://docs.paloaltonetworks.com/vm-series/8-0/vm-series-deployment/boots

...

jerrygb by L0 Member
  • 2112 Views
  • 0 replies
  • 0 Likes

Is there max concurrent session for GP with one ID?

Hi there,

 

One of my customer says when he establishes multiple GP tunnel from multiple iPad (iOS 12), when 4th tunnel is established, 1st tunnel will be disconnected.

 

His topologies are as below:

-PA is VM-300 with PAN-OS 7.1

-iPads run with iOS 12.2

-G

...

emr_1 by L5 Sessionator
  • 2067 Views
  • 0 replies
  • 0 Likes

Resolved! Server Monitoring Not Connected

Hello,

 

Microsoft AD under Server Monitoring is showing as 'not connected.'

We would like to use the PAN-OS Integrated User-ID Agent

Output from debug commands show UserID Debug Log is enabled but nothing is logging.

 

Anyone encountered similar issue?

 

Cisco ISE and Palo Alto TACACS

Few questions here. 

 

Why do you need user local on the PA devices?

Why do you need those users local on the ISE box rather then allowing access from AD groups via ISE?

If the users are local then password changes are not possible when a user changes th

...

Office 365, 5 minute Session Expiring - Help!

Hi All,

 

New to Palo and wondering if anyone has any input on this issue. Our company has rolled out Office 365, but every ~5 minutes - a Session expiration pop-up comes up while any SharePoint document is open (web-based) - 

 

From my traffic logs, I'm

...

Resolved! URL Filtering & Blocked Countries Response page

I have custom URL filtering response page enabled which works; however, I have noticed that when users get this response page, the URL category is correct and is allowed. When further investigating the issue, we found that the URL/Site is blocked by

...

MikeHamm by L1 Bithead
  • 2121 Views
  • 1 replies
  • 0 Likes

GlobalProtect SSO with Kerberos returns user display name

Hi Community,

 

I'm a bit confused by a internal GlobalProtect installation:

I configured Kerberos SSO and created an aut-sequence with Kerberos SSO and LDAP as fallback.

 

The customer is using a third-party Credential Provider (Windows 10) so we did the

...

Chacko42 by L4 Transporter
  • 1855 Views
  • 0 replies
  • 1 Likes

Panorama Device Removal

I had to rebuild Panorama 7 on ESX as for some reason after a power outage the image could not be restored...

 

New installation completed and licensed but I cannot get the firewall 3020 to connect.

 

I have removed the Panorama settings from firewall an

...

Mick_Ball by L7 Applicator
  • 2651 Views
  • 4 replies
  • 0 Likes

Global protect

Hi team,

How can i extract a detailed report on the list of all Global protect users (VPN users). this report aims to get the date each user was created. this is for audit reasons and i would appreciate if any one has a solution. 

thanks

Abduba by L0 Member
  • 1938 Views
  • 2 replies
  • 0 Likes

collecting palo alto firewall logs with Graylog 2.5

Dear palo alto community,

 

I collect the palo alto firewall logs with Graylog 2.5.

When i make an ssh connection to the fw palo alto with an incorrect password, this ssh connection does not get into the logs on Graylog interface web why ? To configure

...

Ayoub2 by L1 Bithead
  • 7116 Views
  • 9 replies
  • 0 Likes