About emr_1

Which PAN-OS version are you using? It should be in the form 11.x.y. (need info for x and y) ... View more

One of my colleagues said he did not see the issue with 11.1.3. You can try on your platform and see how it goes. ... View more

Even I don't have answer to your question(*), how about trying to configure it via CLI? *I checked with my PA-5220 v10.2.4-h4, but I could not see the reproduction of issue   FYI: set user-id-collector server-monitor <name> active-directory set user-id-collector server-monitor <name> active-directory type <WMI|WinRM-HTTP|WinRM-HTTPS> set user-id-collector server-monitor <name> active-directory host <ip/netmask>|<value> set user-id-collector server-monitor <name> exchange set user-id-collector server-monitor <name> exchange type <WMI|WinRM-HTTP|WinRM-HTTPS> set user-id-collector server-monitor <name> exchange host <ip/netmask>|<value> ... View more

I would recommend not use "severity drop" on your command. Here is one example, as described, there are some counter which is warning with packet drops ==== > show counter global name tcp_drop_out_of_wnd Name: tcp_drop_out_of_wnd Value: 0 Severity: Warning Category: tcp Aspect: resource Description: out-of-window packets dropped ==== ... View more

The answer for both questions is yes. I'll attach the evidence log that shows combination of 10.1.11-h4 and 11.1.2-h1 (keeps active and passive state) as below. For downgrade, skip works between 11.1 and 10.1.3. For more details see url below. https://docs.paloaltonetworks.com/pan-os/11-1/pan-os-upgrade/upgrade-pan-os/downgrade-pan-os/downgrade-a-firewall-to-a-previous-feature-release   admin@PA-440-1(active)> show high-availability all Group 10: Mode: Active-Passive Local Information: Version: 1 Mode: Active-Passive State: active (last 19 minutes) Device Information: Model: PA-440 Management IPv4 Address: 192.168.113.5/20 Management IPv6 Address: Jumbo-Frames disabled; MTU 1500 HA1 Control Links Joint Configuration: Link Monitor Interval: 3000 ms Encryption Enabled: no HA1 Control Link Information: IP Address: 192.168.113.5/20; Gateway: 192.168.127.254 MAC Address: 8c:36:7a:00:f8:ec Interface: management Link State: Up; Setting: 1Gb/s-full Key Imported : no Election Option Information: Priority: 100 Preemptive: no Promotion Hold Interval: 2000 ms Hello Message Interval: 8000 ms Heartbeat Ping Interval: 2000 ms Max # of Flaps: 3 Preemption Hold Interval: 1 min Monitor Fail Hold Up Interval: 0 ms Addon Master Hold Up Interval: 500 ms Active-Passive Mode: Passive Link State: shutdown Monitor Fail Hold Down Interval: 1 min Version Information: Build Release: 10.1.11-h4 URL Database: 20240520.20121 Application Content: 8850-8748 IOT Content: 128-502 Anti-Virus: 4823-5341 Threat Content: 8850-8748 VPN Client Software: Not Installed Global Protect Client Software: 6.2.2 Plugin Information: DLP: 1.0.8 Version Compatibility: Software Version: Mismatch Application Content Compatibility: Match IOT Content Compatibility: Match Anti-Virus Compatibility: Match Threat Content Compatibility: Match VPN Client Software Compatibility: Match Global Protect Client Software Compatibility: Match Plugin Information: DLP: Compat Match State Synchronization: User-disabled Peer Information: Connection status: up Version: 1 Mode: Active-Passive State: passive (last 37 seconds) Last suspended state reason: User requested Device Information: Model: PA-440 Management IPv4 Address: 192.168.113.6/20 Management IPv6 Address: Jumbo-Frames disabled; MTU 1500 HA1 Control Link Information: IP Address: 192.168.113.6 MAC Address: 8c:36:7a:00:f8:ce Connection up; Primary HA1 link Election Option Information: Priority: 101 Preemptive: no Version Information: Build Release: 11.1.2-h1 URL Database: 0000.00.00.000 Application Content: 8850-8748 IOT Content: 128-502 Anti-Virus: 4823-5341 Threat Content: 8850-8748 VPN Client Software: Not Installed Global Protect Client Software: 6.2.2 Plugin Information: DLP: 5.0.1 Initial Monitor Hold inactive; Allow Network/Links to Settle: Link and path monitoring failures honored Link Monitoring Information: Enabled: yes Failure condition: any No link monitoring groups Path Monitoring Information: Enabled: yes Failure condition: any Virtual-Wire Groups: No Virtual-Wire path monitoring groups VLAN Groups: No VLAN path monitoring groups Virtual-Router Groups: No Virtual-Router path monitoring groups Configuration Synchronization: Enabled: yes Running Configuration: not synchronized Out-of-sync Reason: Version mismatch admin@PA-440-1(active)> ... View more

I described to upgrade by each minor version like 9.1->10.0->10.1 as "legacy"   https://docs.paloaltonetworks.com/pan-os/11-1/pan-os-upgrade/upgrade-pan-os/upgrade-the-firewall-pan-os/determine-the-upgrade-path ... View more

Even I don't know this is cosmetic issue or not, I could find the way to show TID 95187. Try following: 1. create sample profile from CLI. sample command is as below # set profiles vulnerability "sampleconfig" threat-exception 95187 action reset-both 2. go back to your GUI. you can reuse "sampleconfig" profile or delete it if you don't need, then edit your existing profile with TID 95187   Even I could configure it, I still curious this protect my GP Gateway (hope this is cosmetic issue) ... View more

The thing only I know is that 8.4 is planning to be released on the week of April 15. Even I don't know about 8.3.1, I guess it was planning to be released in late March and slide to behind in some reason. ... View more

Hmm...for me, sequence is as below   1. make successful login to CSP and/or LiveCommunity   2. open new tab on my Chrome and access to top page of panopto   3. select Partner on next page   4. browser automatically redirect to somewhere, auth in background (I believe processing SAML), and afterward top page is displayed.   I don't see anything like your page.   Even I'm not sure this is correct way, how about open a admin ticket? ... View more

I am member of partner and I can access to it. How about top page of panopto?  https://paloaltonetworks.hosted.panopto.com/Panopto/Pages/Home.aspx   ... View more

How about cache? FYI:https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000PPeYCAW   ... View more

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u0000008XKOCA2   FYI : The new KB posted which related to this issue. ... View more