Subject Alt: Email for GP authentication

I've been trying to setup this scenario. But I keep getting subject as username on GP portal. 

Is there any trick? Because configuration is pretty simple.

Delete object group, created new obj. group, policies and objects deleted - how to revert back?

Since we do not have any spare Palo Alto FW's and our is production I must ask before doing something wrong...

I deleted object group (that included 2 HA FW's), created new one with the same 2 FW's comited to Panorama, but now the rules and objects a

DROP_UPDATE on Minemeld

Hello Community,

the logs on my Minemeld shows the below error for all that IPs that catch, could you please advice how to get ride of this problem?

Thanks in advance

Global Protect - Clients with excessive failed logins

We've had Global Protect in production for a while now, but it has just recently been brought to my attention that we are having a lot of users locking their accounts out.

The GP client prompts them for their AD username / password. Maybe they fat-fin

Prompt for Password to access System Keychain

So the solution to this is in the below KB

https://live.paloaltonetworks.com/t5/Management-Articles/GlobalProtect-Requests-System-Keychain-Access-on-Mac-OS-X/ta-p/53332

In the comments, it is reqested for there to be a automated way to solve this pro

HA First time Configuration

Im installing a single Palo at present with the intent of adding a standby unit in the near future. My question is regarding the interface addresses on the standby unit.

What do i need to configure on the standby unit in regards to IP addressing apar

VPN to Azure dropouts

I have searched high and low for this and found a few articles regarding IKE configuration and nothing seems to fix it.

PAN 3020 v7.0.5. IKE 2 VPN to Azure. The VPN works but around every 50 mintues the tunnel drops out for a few minutes then re-esta

different content of backup files.

Hey!

I'm using curl and the xml api to automtically backup the config of my PA-3020:

https://live.paloaltonetworks.com/t5/Management-Articles/How-To-Backup-of-Config-Files-Periodically-without-Panorama/ta-p/77312

However, the content of that file looks

GPCS and Minemeld

I wish there was a prototype in Minemeld to be able to track all GPCS endpoints via the API.

Currently you can only do it using this rather messy way :-

https://www.paloaltonetworks.com/documentation/10/cloud-services/globalprotect-cloud-service-

Skype for Business problem after migrating from ASA to PA-820

We  encountered with the problem of Skype for Business application , it needs to say
that all another applications are working well, but after migration from Cisco ASA to
PA-820 we  saw only tcp-rst-from-server message from remote server to local serve