User-ID mapping integration for Multi-Domain AD server

Hi All,

We are using windows based User-ID agent on Palo alto firewall for user-id mapping.

We have an existing setup with AD domain abc.com for which the User-ID mapping is implemented on PA Firewall and User ID agent is installed on the abc.com dom

Issue | "Nist NVD" Integration is not working

Hi,

We have an issue with "Nist NVD" integration.
When I click the command "!Nvd-search-keyword" we are getting the following message:

"{" message ":" Both modStartDate and modEndDate are required when either is present. "}"

The integration was publish

Migrating fortinet 100D to Palo Alto 850

Hi,

i am migrating fortinet 100D to Palo alto 850 appliance.

Current below is the configuration we have in fortinet, wanted to know the same can be achieved in Palo atlo

1. wan link is ADSL-(dynamic IP- PPOE)

2. Branch locations also has WAN- ppoe lin

How to monitor pa firewall packets rate via snmp ?

Hi Everyone,

I would like to get the pa firewall packets rate via snmp monitor, however I can not find any snmp-mib description about it.

I lookup paloalto networks Enterprise SNMP MIB Files for PANOS 10.0 & 10.1, but no any finding.

Is it possible t

Blue Coat Policy Import to Palo Web Filter

Hello I am looking to find the best way to migrate a blue coat policy to PAN OS 8.1. I am assuming it will need to be exported to xml then imported to the cli? I am sure some tweaking will need to be done. If anyone knows of a tool please let me know

Authentication of admin for the NGFW firewall through TACAS+ Server

Hi All,

We are using TACAS+ Server profile(integrated with Cisco ISE) for authentication of our admin users.

Both the username and password authentication from Firewall admin users are done through TACAS Server auth profile.

On firewall we are having

Add Vm 100 palo alto machin (dr site) to a Panorama to the same device group and template (main Site)

hey

so i have main site and dr site and they are connected in L2

i have in the main site 2 physical pa3220 that there are in cluster (active, passive) and they connected to Panorama and they work perfect

now i need to add the Palo Vm 100 machine that i

USer-id and Group mapping query

Dear Team,

We are using Azure Ad server to integrate with PA.We have configure Azure Saml for authentication of Gp .We need to configure user-based and group based policy foor Gp users through Azure Ad.
We need to integrated user-id agentless or uid ag

Is it "Use Signal Sign-On (Windows)" function work with SAML login for Global Protect?

As I know when SAML login for Global Protect, it will pop-up a login browser unlike other login method.

take Azure AD syn with on-prem AD as a example, 

notebook Window domain login use a on-prem AD (Since Azure AD not support it), but Global Protect

Mitel Phone Mobile App - PAN 10.0.0 PA-3260 can't get it to work

Anyone use Mitel mobility app and working on your Pa-3260?

log-end, log-start disappears at result of show command

Hi

PANOS 8.1.13

At result of show command, in some policy, it is not displayed "log-end" and "log-start" stanza like below test2 policy.
But log-setting is enable. I'm sorry I could not paste hole configuration.
Does it mean that it is impossilbe to lo

XML API - Need to replace services for a security rule via XML api - currently api call is appending new port

Hi - I create a service (tcp-443) and then create a security rule that uses this service as the service member.

This works.

Then, if I call the same API call with the same xpath and provide a different service, say tcp-449, the resulting security rul