Resolved! Panorama fails to deploy PanOS to Firewalls

We have a Panorama (M-100) managing several PA5020 firewalls. We need to update the PanOS from 6.1.7 to 6.1.10 (don't push for higher this is all we can do for now). I've updated the Panorama to the 6.1.10 version. Now i try to use the deployment sof

Resolved! User ID agent user-IP mapping refresh evets

Hi Experts

As you know the default cache time for user-IP mapping in user-ID agent is 45 minutes. If I am not using WMI or netbios or server session monitoring then:

1- How user-IP mapping can be maintained by user-ID agent? This means user has to lo

Resolved! how to add PA forward decryption certificate to Minemeld

Dear all,

first of all, thanks a lot to all contributors for this great project.

Quick question: I configured my Minemeld instance in my local network and I also have SSL interception configured on my PA.

For the moment I had to exclude the IP of

Resolved! Certificate Error on Miner Refresh

Currently Running MineMeld Version 0.9.40 on Ubuntu 14.04. I am getting the following certificate error. I have tried updating the self-signed cert, restart, ubuntu reboot. with no change.

Resolved! Certificate is expired and is shown in the browser

Good Morning,

System: PA-3020

SW Ver: 8.0.6

we are trying to implement a certificate on our Test Firewall and have encountered the an expired certificate.

We have created the certificate (self-signed); however, when I go to the Palo Alto GUI, the brows

Resolved! URL classified as Malware but not sinkholed

Hello,

Quick question for a specific URL (cia.toh.info)  This URL is classified as malware in PAN-DB but doesn't show ip in the AV release notes as a malware site so it doesn't get sinkholed when we do a DNS lookup for that url.  We've noticed other

Resolved! I've bought 1 more public IP range but cannot use it

Dear all,

I've 2 internet lines connected to 2 different ISP: ISP-1 and ISP-2. Default route to internet is the connection to ISP-2

I just bought 1 more public IP range from ISP-1 that belong to a different subnet with my current ISP-1 public IP range.

Resolved! Wildfire Analysis profile w/ no license

Hi,

I'm wondering what effect, if any, does the default wildfire analysis profile have when you do not have the wildfire license applied to your firewall?

Thanks

Resolved! URL block message

We are getting this message, when opening websites sometimes. My suspect is the unknown category which was set to be blocked recently. But i don't know what is the source page of this message and it is the same message everytime, with business name o

Resolved! Permissions of user-ID service account for wmi and netbios probing

Hi All

As I know to read the logs from DC, "Event Log Readers" permission is required for service account. 

For WMI probing to clients, I need all below (please correct me if I am wrong)

1- Service account permission should be "Server Operators" in AD

Resolved! Office 365 Powershell Decryption Error

I'm testing decryption on our PA-3020 and have found my Office 365 Powershell licensing script is failing to connect with the following error message:

New-PSSession : [ps.outlook.com] Connecting to remote server ps.outlook.com failed with the followi