- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
09-06-2021 06:05 AM
Thank you for reply @VishnuPS
I see. When it comes to Panorama and pushing user information, there is one difference compared to configuring it locally on Firewall. The format of AD information has to be in Distinguished Name (DN). Here is the KB for reference (Please go to point No.5): https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClIOCA0
After you configure it in this format, and push it to managed Firewall, the user information should be available in security policy.
Alternative solution would be to enable one Firewall that already has all information as a Master Device in the Device Group. Here is a KB for reference: https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PMtpCAG
I have tested both of the solutions and both were functional.
Thank you and Regards
Pavel