How to configure Syslog to send a CEF in PAN OS 7.1.3

I had found this article for CEF on PAN OS 6.0.0

https://live.paloaltonetworks.com/t5/Configuration-Articles/PAN-OS-6-0-CEF-Configuration-Guide/ta-p/59938

Do the same rules apply for PAN OS 7.1.3? 

I would need to add "CEF:0|Palo Alto Networks|PAN-OS|7

User-ID 8.0 - PKI Setup?

Anybody seen any specific directions on how to setup the new PKI enteprise certs in UA 8.0 beyond the fluffy "whats new" feature section.

Also what is the different between UAinstall and UAcredinstall ... Release Notes are silent.

How to view Panorama related config applied locally on FW

Hi,

When you locally export the config of a firewall managed by panorama, only local config statements are visible.

would be very interesting to know how you see the whole configuration ( the one related to panorama and the one locally related ) direc

Panorama Packet Capture: "File Not Found"

I noticed when trying to open a packet capture in the GUI by clicking the green "down" arrow I get the following error message: "File Not Found". This happens for every capture I try to open with the green arrow in PANORAMA. 

The packet capture opens

URL Filtering - Allow access to sites or categories by AD Group

I am a complete newby here. We are migrating from Websense to PA URL Filtering. I would like to duplicate policies so I can allow certain people access to specific web sites or categories, but continue to block everyone else. This should be seamless,...

Cannot authenticate to the GlobalProtect website to get the client.

Users cannot authenticate to the GlobalProtect website to get the client.  Users that downloaded the client before this issue was reported can authenticate with the client.  I verified this issue with my own login.  I cannot reboot this firewall duri

Monitor threat - URL/FileName

Hi,

in monitor threat I can't view URL/FileName in details.

I want to view the SQL injection with the full URL (comprehensive of the query string).

Is there a way to see it?

Minemeld stuck after reboot

I deployed serveral times Minemeld and everything is running fine. But when I reboot Minemeld I got stuck in the boot procedure. 

First it hangs for 120 seconds:

Cloud-init-nonet[14.62]: waiting 120 seconds for network devices.

after 120 seconds:

St

Global connect client connected but no IP address assigned

I have this odd situation, global connect client successfully establish the connection with portal but in network area there is no IP address on virtual PAN network card. This is only happening with new users. Old users seems to have no problems.

I Ha

External Block List for matching objects in security and decryption policies

Hi,

We have few use cases around dynamically block list (dynamic update for us) however we would like to use it to identify and "allow" apps rather than "block". Considering it is just a group with objects which are dynamically populated based on url

Trusted MFA Gateways

What to type? What format? The doc doesn't say...

I'm testing MFA in non-http traffic, and have enabled "Inbound Authentication Prompts from MFA Gateway"

But what to type here:

In Trusted MFA Gateways, specify the list of authentication gateways a Gl

Issues with Group Mapping

Hello,

We just recently moved to PA-500 and we are running 7.1.6. I was able to successfully add my LDAP to my group mapping however when I try to select my security groups instead of showing "Domain\GroupName" it is showing the AD distinguished name