This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew

Search for old KB kA10g00000PLW6

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Search for old KB kA10g00000PLW6

wuj
L1 Bithead

‎04-07-2026 01:02 PM

I am looking for a this KB that I bookmarked in 2022.

https://knowledgebase.paloaltonetworks.com/KCSArtcleDetail?id=kA10g00000PLW6

Can you someone point me to the new KB?

Thanks,

Jay

0 Likes Likes
4 REPLIES 4

kiwi
Community Team Member

‎04-08-2026 12:34 AM

Hi @wuj ,

 

Do you know what the topic of the KB was ?

 

Kind regards,

LIVEcommunity team member, CISSP
Cheers,
Kiwi
Please help out other users and “Accept as Solution” if a post helps solve your problem !

Read more about how and why to accept solutions.
0 Likes Likes

wuj
L1 Bithead
In response to kiwi

‎04-08-2026 11:59 AM

Thanks for your reply! 

It was about a KB to resolve the 10036 error messages from the PAN switches, and the AD account doesn't allow to activate DCOM server. "Please raise the activation authentication level at least to RPC_C_AUTHN_LEVEL_PKT_INTEGRITY in client application."

0 Likes Likes

kiwi
Community Team Member

‎04-09-2026 01:56 AM - edited ‎04-09-2026 01:58 AM

Hi @wuj ,

 

Is it possible this is related to a transport method change (from WMI to WinRM)  ?

When the firewall was set to use WMI as a transport method, the "client probing feature" is also set to provide the WMI probing to the server side. The "Client Probing" feature uses WMI queries. When you migrate to WinRM, despite the fact that the client probing feature is no longer needed for WinRM tasks, it can persist on the firewall configuration.

 
In order to avoid the server getting the error message "10036" from any user from the firewall side, after a transport method change ( from WMI to WinRM ). Administrators must manually uncheck the "Client Probing" feature functionality.

Path: Device > User Identification > User Mapping  : Palo Alto Networks User-ID Agent Setup: Client Probing
 
For the error ID 10036|KB5004442. of Microsoft DCOM, it is suggested to migrate to WinRM to avoid the same,
Option 3: Switch to WinRM transport protocol in this KB:
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u0000004MI6
However, in some scenarios after changing to WinRM the error message persists on the server side.
 
Palo Alto Networks strongly recommends disabling client probing because it is not a recommended method of obtaining User-ID information in a high-security network:
https://docs.paloaltonetworks.com/ngfw/administration/user-id/user-id-concepts/user-mapping/client-p...
 
I hope these help,
LIVEcommunity team member, CISSP
Cheers,
Kiwi
Please help out other users and “Accept as Solution” if a post helps solve your problem !

Read more about how and why to accept solutions.
0 Likes Likes

wuj
L1 Bithead
In response to kiwi

‎04-09-2026 11:01 AM

Hi Kiwi,

 

Thank you for your reply!

I will check it out.

thanks,

-Jay

0 Likes Likes
  • 737 Views
  • 4 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks