Bulk submission support using Web GUI? and CLI access to minemeld hosted in Autofocus?

I cannot see a way to do bulk submissions from the Web GUI that I know of so are there plans on having that capability in a future Minemeld release?

how to get CLI access to Minemeld hosted in Autofocus?

Do you need Windows Server 2019 support for User-ID?

If you think you will need Windows Server 2019 support for User-ID, ask your PA rep to vote for feature request ID# 11012!

We just upgraded all of our domain controllers organization-wide to Server 2019 only to find out that User-ID does not work wit

Best Practice: Allowing a known application together with a custom service.

Let's say we have 2 zones seperated by our PA firewall, Zone A and Zone B. Traffic between Zone A and Zone B is only allowed for some applications/services from dedicated devices in Zone A to dedicated devices in Zone B.

We have a custom Service whic

Import LDAP Groups

All,

I am trying to import my LDAP groups, but don't want all of them.  I have too many groups to put them in the Include list.  I also have a large number of local.admin and Folder Access security groups.  SInce I can't filter by OU, how can I filte

Zone protection - Show hops between source & dst.

Hello,

I want to see the hops between the source and destination when I do tracert from my PC to an IP.

The tracert is shown as completed.

I followed the following kb but didn't work: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA

Traffic is not getting Natted DIPP

We have Single Outbound PAT configured for internet traffic for all internal users.

So all users traffic use the same Outbound PAt while going to internet but one traffic is not getting natted with this NAT policy

There is no PBF configured, its simpl

Automatic email alerts: Sinkhole and security policies

Hi Community,

This query is for PAN-OS v8.1.X

I am trying to generate an email alert when the firewall sees an (action eq sinkhole) event or when the security policy created to sinkhole an infected host is used. Email Profile(s) have already configur

Custom URL category enforcement in URL column

I'm seeing some different behavior from our firewall on 8.0 code.  I've got a few rules setup wtih both security URL profiles, and the URL category column.  I've got a few custom URL categories made that match certain traffic.  What I'm finding is t

Palo Alto IDS Deployment

Hi!

Has there any specific document for PA IDS Deployment and best practices?

Thanks in Advance..

how to route different inside subnet to different outside interfaces?

the customer have added a extra isp router which i need to route a certain subnet through it for internet , the problem the default route 0.0.0.0/0 already route interent through the old outside interface , how do i route the specific inside subnet t

Cisco ISE and Palo Alto TACACS

Few questions here. 

Why do you need user local on the PA devices?

Why do you need those users local on the ISE box rather then allowing access from AD groups via ISE?

If the users are local then password changes are not possible when a user changes th