We have PA user id agent running on the windows server.
Need to confirm Port used by the User id agent to talk to AD for user to ip mappings
is this port tcp 5006?
where should i look for?
Solved! Go to Solution.
By default, its port 5007. It will initiate from the client/server to the PAN on the management interface. You should be able to see it connect if you go to the Device tab -> User Identification ->User-ID agent subtab. The ball should be green. Also if you have the local firewall turned on on the server, make sure you are allowing port 5007/tcp outbound.
Think the question was what port the UserID agent uses to talk to AD (not the Palo).
UserID to AD servers port usage is referenced here:
On the windows server run a command prompt and use
look for established connections from agent server to ad server,
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!