what Windows PKI certificate template to use for pre-logon

I am testing pre-logon and have a question about what certificate template to use.  I cloned the Computer template but didn't know if there was a recommended template to use.  Also, are there recommended settings to use for the template to be used fo

configuration profiles for the XDR macOS agents with Intune

How can we deploy/update XDR macOS agents with Intune ?

post connect vpn

Does running commands from the registry using post connect vpn only support .bat files or is powershell supported?

I am running PANOS v11 and GP v6.0.7

If its only .bat files that are supported here, can I call a PowerShell file from within the bat

A valid client certificate is required for authentication - PanOS:9.1.16-h3

Hello Team

We recently upgraded to 9.1.16-h3 on Dec 15th and we started having issues with Global Protect where users are not able to authenticate using the certificate. We have checked and made sure that the correct with its private key is present i

PAN OS 9.1.17 Global Protect Issues

I upgraded from PAN OS 9.1.14 to 9.1.17 on Dec 27, 2023

Ever since the upgrade, I have random users that cannot connect through VPN GP at the first time. Some users experience connect disconnect issues as well. Some users are working just fine.

W

GP VPN fail on iphone ios

Hi,

I face with issue GP VPN fail to login on iphone ios 15.8. The error show Portal login, error = The certificate for this server is invalid. You might be connecting to a server that is pretending to be “119.x.x.x” which could put your confidenti

Customer Support

very disappointed with Palo Alto services , customer service doesn't pickup the call and they doesn't care about the customer case. day by day services are going worst .

Global Protect firewall allowed rule

Hi,

I'm creating a firewall rule to allow TCP 443/UDP 4501 (Global Protect) to go through the firewall, and I want to know if I need to allow bidirectional for the UDP 4501?

Thank you,

Device Block List for GlobalProtect - where is it in v10.x?

Both this: https://docs.paloaltonetworks.com/globalprotect/9-1/globalprotect-admin/host-information/block-device-access

and HELP indicate an DEVICE BLOCK LIST available for GlobalProtect.  When in the FW GUI I should see it in the GlobalProtect menu.

GlobalProtect 6.1.0 for Linux Fedora 39

hi all,

Our EU is currently on GlobalProtect 6.1.0 on PA-5250 firewall, we just wondered if this GP 6.1 support Linux Fedora 39? I tried to find any legit resources that would mention this but couldnt find anything helpful. Would like to share the

How to validate user/endpoint is fetching which profile from GP Portal Agent configuration.

Hello Team, 

I have configured multiple agent profiles in the GP Portal and I want to verify which agent profile is currently being fetched by individual user, How do i verify that from the firewall or endpoint?

Context: I have profile 1 which has

GlobalProtect 6.2.2 connects automatically despite on-demand is enabled

Hello everyone,

After upgrading GlobalProtect from 5.x to 6.2.2 users started to complain that GP is connecting automatically after logging in to OS. Agent App configuration hasn't been changed and still is On-demand.

There is addressed issue in GP