General Topics

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource

LIVEcommunity is thrilled to introduce its new Support FAQ section, designed to help Palo Alto Networks customers quickly resolve their common queries.

You'll find this new area under the Articles section of the main menu:

Our goal is simple:

...

Resolved! Atlassian custom Miner and Feed

I am trying to create a miner/feed for Atlassian IP-Ranges which they publish in a JSON file. I have configured the below and it all looks good and I have Indicators, but when I go to the feed URL it returns a blank page.

I created the prototype by

...

Resolved! PA traps certificate expired

Hi,

We have ESM Console and server using SSL certificate. This certificate has expired so we lost communication between traps and agents, and we only connect to ESM from the own server.

How can i renew the certificate SSL???? Its mandatory to install

...

Disable HTTPS

All:

I'm running MM Community edition, and for lab testing I need to disable the HTTPS redirect. I have followed the guide here, but still cannot get the HTTP-only running on the nginx:

https://live.paloaltonetworks.com/t5/MineMeld-Discussions/Disab

...

Resolved! Error polling virus total

I'm running into an issue with the virus total miner. Once the API key is set it continues to throw this error:

2017-09-08T14:24:58 (2986)basepoller._actor_loop INFO: virustotal_notifications-green - command: 1504880698052 poll 2017-09-08T14:24:58 ...

Traps tray icon not reflecting after migration to 5.0 in Windows 10

For some reason 80% of the machines are missing the below file :

Path : c:\Program Files\Palo Alto Networks\Traps\

File : cytray.exe

cytray.exe file needs to be available in the above Path.

We did the upgrade from Altiris.

Newbie: Local (wildcard?) certificate(s)

I'm running a VM-100 with several zones where I have MS AD / WSUS in one, two zones with lots of wireless device management, another zone for vmware management etc.

Every day I run into web browsers yelling about unsecure acces to local device manage

...

Resolved! does PA support encryption AES-256-SHA and AES-SHA-HMAC-256?

I need to setup VPN tunnel with Cisco ASA

Does PA support Phase 1 - AES-256-SHA?

Phase 2

AES-SHA-HMAC-256?

I can only see AES-256-Scdc encryption?

Resolved! Base ID manager is reset

Anyone run into this issue? It raised a "Critical" log but appears to have occurred during a validate. Having issues finding any references on this alert discription.

Base ID manager is reset - System Log

ADSSP Integration for Cached PW Update

Wondering if anyone has successfully integrated ADSSP Cached Credential Updating with PAN VPN and GlobalProtect client.

Have tried to find command line references for the GP client but am coming up blank.

ADSSP needs to call the VPN connection durin

...

inter-logger-agent message in Panorama

Anyone know what this message refers to, and/or suggest any steps to trouble-shoot?

The message is showing up in System log of a backup Panorama M-500 manager. X.X.X.X is the IP assigned to dedicated port on primary Panorama M-500 manager. The int

...

Resolved! Microsoft Windows Auto Pilot and SSL decryption

Hi Everyone,

Seems the Microsoft Windows Auto Pilot does not work when SSL decryption is enabled.

I tested see no drops on the global counters and nothing on PA PCaps.

When disabled SSL decryption it worked fine.

Any ideas?

Mike

Resolved! Partial Import of Address-Groups results in "Unexpected Here"

Anyone seen this before? currently testing in Panorama on version 7.1.5 and trying to import Address Groups. Addresses works fine and are present.

command being run is:

load config partial from test.xml from-xpath shared/address to-xpath /config/share

...

Resolved! Query on HA1 link

Hello,

We have an Active-Passive setup. The HA1 link in the Active unit shows down (red) if the Link settings are set to auto/auto.

If I change the settings to 100mb link, full duplex and link state to up, the port shows up (green).

Shouldn't it work i

...

Authenticating with Captive Portal

I just got off the phone with technical support and the technician said that the only traffic I can authenticate is http/https. Can someone confirm that the use case below is not valid?

Here is what I want to do:

Use HTTPS to authenticate a user

Af

...

Exclude account(s) from authentication?

I know there is the allow list, but what about an exclude? We use Captive Portal for BYOD and have thousands of accounts we want to allow, but exclude our double digit generic accounts from being able to log in. What's the best way to achieve this?

Discussions

Introducing the LIVEcommunity Support FAQ: Your Valuable Customer Resource