GlobalProtect with MFA Dual Authentication

We have set up a GP slit tunnel we allow SSO using LDAP and Certificate based authentication this allows access to everything in the corporate network. However for applications we have specifically listed by service and destination we have created ad

UserID information

Is there a way to pull the UserID information from the Palo alto logs concerning VPN users?

GlobalProtect portal user authentication failed

For globalprotect I have a radius server profile with two servers in it.  I have noticed that all authentication goes to the first server in the list all the time.  And that works.  However, in testing, I have shut off the first server and the firewa

Hangout as ms-lync

Hello everyone,

the users in our company use Google Hangouts / Meet. We allowed google-hangouts and google-meet and all the dependent applications with Service Any.

However the connection is recognized as ms-lync!!

Anyone else facing similar issue?

Be

Configure Firewall HA through Panorama

Hi !

How we can configure the HA between Firewall through Panorama. I have added the both devices in to single device groups. So whenever i did the HA configuration parameters it's getting applied to both devices .

What are the steps need to be follo

Panorama snmp trap

My idea was first to setup panorama to monitor the logs for critical and then send snmp trap.

But from what i can see from the PA mibs, there are no way for panorama to send info in the trap about the device? So all i see in the trap is the panorama i

qos rule allowed application is http-video but stats and cli also shows unknown-tcp

I have configured qos on application http-video  only and category is any.

Running OS 8.0.9

On qos stats graph it also shows application as unknown-tcp

from cli  when i run command

> show session all filter qos-class 1

it shows application as undecide

GlobalProtect concurrent Gateway conections

Hi

i have two separate PA-220 clusters  in separate sites and i can connect to each one independtelly via global protect, but i have to choose one site or the other. is there a way to setup the Global protect to connect to both sites at the same time

All O365 Miners have 0 indicators as of a few hours ago

All my other miners are working fine.

minemeld-engine: current: 0.9.50.post1 latest: 0.9.50.post1

Anyone else has the same problem?

GlobalProtect Connection Issue

The company I work for recently roled out paloalto vpn service for users to connect via VPN

However one frustration most if not all users have observed is the initial connection via GlobalProtect client.

Across all client versions and all OS's (Window