Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Get Started
- News & Events
- Collaboration
- Education Services
- Technologies
- Next-Generation Firewall
- GlobalProtect
- Threat Prevention Services
- Endpoint Protection
- SSL Decryption
- 5G
- IoT Security
- Prisma SD-WAN
Network Security
- Prisma Access
- Prisma SaaS
- Prisma Cloud
- CN-Series
- VM-Series:
- Alibaba
- AWS
- GCP
- Azure
Cloud Security
- Cortex XDR
- Cortex XSOAR
- Cortex Data Lake
Security Operations
- Resources
- COVID-19 Response Center
- LIVEcommunity
- ›
- About RPerez11
About RPerez11
Announcements
Changes to the LIVEcommunity experience are coming soon... Here's what you need to know.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
a week ago
3Posts
0Likes
0Solutions
Apr 08, 2021Last Visited
User
Activity
User
Profile
Latest posts by RPerez11
| Subject | Views | Posted |
|---|---|---|
| 961 | 03-25-2020 03:45 PM | |
| 442 | 03-20-2020 04:41 AM | |
| 555 | 03-20-2020 04:39 AM |
User Badges
Public Statistics
| Date Registered | 03-20-2020 03:41 AM |
| Date Last Visited | a week ago |
| Total Messages Posted | 3 |
03-25-2020
03:45 PM
I have my PA-200 on virtual wire mode with Captive Portal using SSL Decrypt for all users with Self Signed Certificate. When the users try to navigate on crhrome browser to internet they receive NET::ERR_CERT_COMMON_NAME_INVALID that doesn't permit to bypass for go to untrust site. When i manually enter a site that support http or another certificate method, is possible to navigate to the the unsafe site and Captive Portal works very well (Also I have Decryption profile and it also works) I read that it is common issue on Google, So I manually put a Subject Alternate name on attributes (host, ip, alt-email) to the Certificate, after export to the PC user like a root trust certificate but it doesn't works On my case, all trust users takes DHCP IPs of the Router above the FW so default gateway is the router IP (virtual wire doesn't provide a FW IP) . I manually generate a certificate with the router IP but still doesn't works 😞 Any Idea or suggestion?
... View more
03-20-2020
04:41 AM
Hi Georgios. At the end it does work? I have a similar issue I probe the integration between Palo Alto - Google Authenticator trough RADIUS and it works perfectly. But now I need to integrate the same with LDAP in the entire authentication process. So customer wants: GP user opens and authenticate - User Mapping with LDAP Profile - Sends to user the authcode - login with the token I can't fin the configuration process. Can you help me?
... View more
- Tags:
- i Georgios..
03-20-2020
04:39 AM
Hi Folks. aAnyone know if the integration to external GP users to LDAP and Radius integrtion works in the same process? I probe the integration between Palo Alto - Google Authenticator trough RADIUS and it works perfectly. But now I need to integrate the same with LDAP in the entire authentication process. So customer wants: GP user opens and authenticate - User Mapping with LDAP Profile - Sends to user the authcode - login with the token I can't fin the configuration process. Can you help me?
... View more
Latest Blogs
Latest Posts
Copyright 2007 - 2021 - Palo Alto Networks
