Prisma Access - CIE multi profile - breaks SSO

Hello all . 

Seem to be casting into an empty pool here but will try anyway. 

My issue is with Multi Auth profiles using Global Protect & Prisma Access. 

If you use more than one IDP you can only match against one profile , hence you can't use mu

Cloud Identity Engine - Multi Auth Profile

Hello All . 

Have a very simple thing I am trying to do but as ever things are not so simple with Palo . 

I'm using Prisma SASE  and this focus around this question is Cloud ID Engine & Global Protect. 

WE are AAD only with no on premise resources

Why does not "summarize-mobile-user-routes" display on running-config.xml ?　Related to PAN-232831.

Hi,

I'm using Panorama managed Prisma Access and facing PAN-232831.

(MU Pool is not advertised correctly.)

So I disabled "summarize-mobile-user-routes" for all RNs.

Then I checked running-config.xml of Panorama, "summarize-mobile-user-routes no"

Panorama M500 to M700 Migration with Prisma Access

Hi all,

We are planning to perform a Panorama M500 to M700 migration with Prisma Access VPN Users integrated in. What would be the best steps to do to achieve minimum downtime for the VPN Users.

For context, we are to migrate Prisma Access & CDL

Incidents coming empty to ServiceNow from Prisma Strata Cloud Manager

I am reaching out to seek assistance with an integration issue we are experiencing between Prisma Strata Cloud Manager and ServiceNow. We have successfully configured an integration between Prisma Strata Cloud Manager and our ServiceNow environment.

How to Filter logs from Strata Logging Service (CDL)

This doc will walk through how to filter log fields directly from the Strata Logging Service to limit the amount of data being sent out Log Forwarding Profiles via Syslog, HTTPS or Email.

First log into your hub instance at apps.paloaltonetworks.co

Understanding Prisma Access Syslog Header & messages

Hello Team,

I am working on Prisma Access syslog csv format. We are able to forward & receive csv logs successfully.

Now, I am trying to understand the format. I could able to understand the message part as all the field details are provided in the P

Problem DNS Resolution

Hi Guys,
I have an issue in my Prisma, its look like when i get spesific ip pool like x.x.a.a. I cant reach the server DNS.
Maybe anyone have an issue like me? I need help
Thanks!

DNS not resolving through Prisma Access for a particular domain

We have a hostname that doesn't get resolved by DNS while running through Prisma Access.  It works fine if you are off the internal network.  I know DNS is proxied via Prisma Access so I'm wondering how to fix this issue.  If I bypass DNS (entry in t

prima access

How to successfully configure split tunnel based on application?

BGP configuration on active/passive setup on service connection

Hi,

Need your suggestions on setting up BGP connection between active and passive setup on service connection. 

Here is the eg:

One service connection with active/passive tunnel between Prisma access to Data center.

Diagram is attached.

BGP

Integration Challenges Between Prisma SASE and ServiceNow

Hello community, 

My team and i have been working on integrating Prisma SASE with ServiceNow to streamline our incident response process, We've followed the steps outlined in the official documentation but, unfortunately, have encountered some chal

GlobalProtect MFA on iOS

Hi,

Has anyone configured 2FA on iOS? We are looking at the possibility of authenticating iOS users to Prisma Access via GlobalProtect. We understand that we can use client certs on the devices, but is it possible to use 2FA on the iOS devices, and