This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

SSL Inbound Inspection with Active/Active HA

New to SSL Inbound Inspection here.  Running 8.0.10 at the moment.  Have a pair of 5050s running in active/active HA.  I think I have everything configured properly as it appears to be working, mostly. 

 

When I initiate a connection from client to ser

...

Captive Portal web form displaying basic auth in chrome

When I set up the Captive Portal and configure it for browser challenge, on non domain joined machines I get the following prompt before I'm sent to the web-form.  Is there any way I can get rid of this or at least get it encrypted so users aren't at

...

Capture.PNG
Lcroce by L1 Bithead
  • 2368 Views
  • 2 replies
  • 0 Likes

MineMeld - Feeds Authentication Verification

Hello Folks,

 

My MineMeld experience has been great thus far thanks alot for creating such a robust community product.

I set up authentication feeds recently and am curious where I can verfiy authentication is successful? 

Is this a Firewall Log or

...

Resolved! Firewall cert-SSL forward proxy-To actual destination,

I know for a fact that firewall intercepts SSL connection  and generates on-the-fly cert to clients under decryption scenario. But, I wasn't able to find enough resources explaning how firewall intitates connection to the actual destination on client

...

Missing fields in custom reports that would be useful

I am trying to make a more meaningful executive style report for user activity and web browsing. Currently the 'User Activity' report has columns which are not availble when generating a custom report; estimated browse time, count, bytes, etc. 

 

If I

...

mike406 by L2 Linker
  • 2664 Views
  • 1 replies
  • 0 Likes

DUO MFA and username with a space

8.1.2 platform

LDAP user with a space in the username "john smith@ldap.com"

Auth profile with sAMAccountName working fine for "john smith" tested from cli

GlobalProtect with single factor LDAP auth working fine externally for "john smith"

Auth policy for

...

Strange dataplane MGMT plane behaviour

Hi,

 

We are having strange behaviour with DP and MGMT plane.

 

We received these alarms:

 

 show log system | match severe

2018/07/20 12:00:02 high     general        general 0  Dataplane under severe load

2018/07/21 12:00:02 high     general        general

...

BigPalo by L4 Transporter
  • 3008 Views
  • 8 replies
  • 0 Likes

MineMeld docker based on centos / rhel?

Hello!

 

I have been looking for a docker image that is based on Centos / Rhel and not Ubuntu, but I cannot find any.

Is there any image beeing worked on?

 

Also, the Docker image runs root inside, which I cannot seem to change as I get the following

...

Resolved! User-ID Redistributed users not the log file

Hi Guys,

 

For one our customer we have two virtual cluster - frontend and backend firewalls. On the frontend firewall we have Global Protect enabled, with LDAP and User-Group Mapping, assign different access for different user group. Connected users s

...

Resolved! Any way to de-auth a user outside of SSH?

I know that we can force a logout for a user from the captive portal on the CLI as shown in the link below but is there a way to access this functionality through the web management portal?

 

https://live.paloaltonetworks.com/t5/Management-Articles/How

...

Lcroce by L1 Bithead
  • 2711 Views
  • 5 replies
  • 0 Likes

Resolved! Panorama Certificate Profile Breaks Refresh

Hello Folks,

 

I have a strange scenario and am most likely missing something. 

I created a CA cert from a new Panorama template. I installed into the MineMeld server and verified the cert is showing up via google chrome. I then created a certificate

...

Resolved! How to deactivate virtual PA firewall with API

Trying to deactivate a PA-VM firewall with the API.

 

First I add the Licencing API key to the PA with the firewall API:

 

In order to hide my real values, let's use:

 

myfirewall.corp as my firewall

cxvzvxvcxvczc as my firewall's API key

dgshgdjsgdjsgj as m

...

Panorama/Palo Alto Design Query

Greetings Folks,

                           I have a Design and deployment Question. Our company have 3 Data centers located at three different Geographical Locations. We have a project to deploy Palo Alto 5200 Series Appliance in the environment as I

...

  • 24025 Posts
  • 102 Subscriptions
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks