06-17-2026 06:58 PM
This is a PA environment I have inherited and I don't have a PA background, most everything was already set up....I just maintain security rules, NAT, etc....basic stuff.
Been having quite a time with our Macs and User-ID through Active Directory and using the App-ID Agent on a server. After a few cases and frustrated users, think we need to pivot to an internal GP gateway for user ID.
I don't know if I should take my existing GP portal that is set on a loopback address to include internal detection, or set up a new one with my LAN interface? Do I need to set my GP DNS name internally to point to an IP on my PA-1410? How do I make this seamless to the users so they don't have to log into GP client on their machine?
In looking at some links on here as well as through other searches, I didn't find anything that really jumped out at me that matches what we are trying to accomplish. I'm hoping that someone can nudge me in the right direction.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
