Windows based user ID Agent Setup

Hi Everyone, 

Hope everyone doing well. 

we have setup a windows based User ID. but one problem I saw with that is, it is receiving accounts with $ sign in the last. I believe these are service type accounts and if yes we would like to exclude them on

Global Protect 5.0.4 portal not found

hello team,

we have this client running his ISP thru E1/3 (secondary ISP service), he wants to allow the Global Protect client thru this conection, however, after configure the portal and gateway in the PA-500, we test in the agent installed and we g

Template Variables

I didn't find the documentation that helpful regarding template and template stack variables, so I'm writing this post that will hopefully help someone out with creating their first variable. In my example below, we used a template variable to change

Users connect to Global Protect even with expired certificate.

Hi.

I've been detecting that some users have their VPN certificate expired and still manage to connect to the Global Protect VPN.
The Global Protect settings are correct, since most users if their certificate is expired do not let them connect.

Globalpr

Queries for DUAL ISP link

I am following this KB link to set this up https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClFiCAK

1/ So the documents says i have to setup 2 source NATs for each interface. Can we getaway by using the interface as ANY in NA

GlobalProtect Portal hostname for client endpoints

Hello all,

I've been trying to find out if it's possible to assign a hostname to a portal so that clients' portal list on their workstations have hostnames rather than IP addresses. I work in an environment where IP address for different "sites" are

Active/passive vs active/active recommendations

Hello,

We are about to work on a Paloalto cluster deployment, which will be sitting next to the internet (we will have two separate providers) and we need to make the decision whether we configure it as A/A or A/P.

I keep reading in quite some places

Global Protect External Gateway - saying only manual gateway exits

All of the sudden, in our global protect setup(Pre-Logon-Always-On, internal host detection, we were able to switch between internal and external networks and Global Protect would always reconnect.  For about a month this has not been working.  I got

Certificate for gateway

My CA is Portal / Gateway  firewall it is having different template group and LSVPN HUB  firewall on different template group.

I have created new certificate for HUB  gateway on Portal/GW template , exported it from template group and imported it on

Not able to introduce "?" in log-link

Hi,

Im trying to configure a log-link web with the character "?" in the middle but the PA is deleting this character "?"

Do you know if there is any way to put the question mark character "?" in the URL

for example this:

set deviceconfig system log-lin