I wanted to find out if anyone has had issues with running 6.5.1-b5 on their ION's (3000/3200/9000). We have been running this version since late October. We receive random reports of slow performance and we can't figure out where the issue lies. I'm not singling out the ION's or the software version because we have had these reports before we u...
Attention: JAPAC TPM TeamHello Team, I am testing the Prisma SASE Aggregate Monitoring APIs(https://pan.dev/sase/api/mt-monitor/) and encountered an issue. When calling the “Get number of users at location(s)” endpoint:https://api.sase.paloaltonetworks.com/mt/monitor/v1/agg/locationsUsersusing the “User Count across Locations” operation, I co...
Hi!I'm trying to find API call, that gets circuit names as seen in SCM. Have been researching whole day without success. Reason for this: - Some IONS have one fiber connection and one mobile connection - I need a way to monitor just fiber connection. (our circuit name includes media type) - Interface status is not enough, because fiber connectio...
I’m working on a Windows machine and have already tried every possible troubleshooting step I could think of, but unfortunately I haven’t had any success. I raised a support ticket, but so far there’s been no response, which has been a disappointing experience. If anyone in the community can guide me on an easier way to reach support or suggest ...
Hi expert, Any one implemented the prisma access enforcement for mobile users GP, Looks it works for windows PC but not not working well for Mac-OS. Any idea? Thanks in advance!
Hi expert, If we do not have Prisma Access China license, but still want to connect China mainland mobile users to closed MU-SPN overseas, say Japan pop. If this will be blocked by Greate FW, and if it is, if any workaround. Also, can connect to the overseas SC and then send traffic to Prisma Access Cloud ? If can do that, how to achieve it. ...
Dear Community Expert Team, This my first post in Community. I really enjoy the Palo Alto Prisma Access SASE. Find the below details: Before I am going to production configuration I plan to test in my LAB environment for multiple of POC. Requirement: Service Connection configuration Setup: Palo Alto NGFW hosted in GCP (Google Cloud Plat...
Hi, all, thanks in advance for any help about an issue we are facing with User-ID agent on on-prem and EntraID with CIE integration.Let me explain our topology a bit deeper: On the one hand, we have a Remote Network with some Windows servers without GP or Prisma Access agent. We use User-ID agent for username-to-IP mapping. This is sent to loc...
Hi Everyone, We are trying to troubleshoot an issue where enabling ECMP on the Virtual Router breaks Prisma Access. We have 3 circuits configured (see pic) to load balance internet traffic. This firewall is also a service connection back to Prisma. When enabling the 3 link we loose routing from Prisma to the subnet advertised on the service co...
What do the Modem Restart and Radio Reset options do under the actions button. What affect do they have on the other ports?
Hello all, I'm facing an issue after trying to enable conditional access policy on Azure entra id in order to prevent the use of other browser except from Prisma Browser. Although the conditional access works for all the applications (SharePoint, in house apps using entra id, etc) as I wish, I'm facing a problem with outlook app and teams app (n...
Hey, I have the right licenses for the policy optimizer and policies that are active for more than 15 days yet I don't see anything in the optimizer screen, I only use the SCM to manage prisma access (no NGFW), any ideas?
Hi, We have just downloaded the latest GP for Windows x64 v6.3.3c828. The MSI properties indicate that the product code is {B316DC7F-EB20-4A36-AA0A-96099FA142DB} however when it installs it installs as the previous version product code {CD809CD6-9D01-417E-9E76-D19EEE77E74F}. We have verified that the version installed and running is the c828 ver...
Attention: JAPAC TPM teamHello Team, We are considering upgrading GlobalProtect using Intune.Under GlobalProtect Setup > GlobalProtect App > App Settings > Upgrade GlobalProtect,if Disallow is selected, will this affect upgrading GlobalProtect via Intune? My understanding is that Disallow only prevents users from upgrading manually,...
Attention: JAPAC TPM teamHello Team, When integrating Prisma Access China with Prisma Access Global,my understanding is that one of the following options is required:-Cross Border Line (CBL)-Premium Internet (PI) We are considering Cross Border Line (CBL), but does the availability of a whitelist service determine whether international inter...
