This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About promsos
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About promsos
04-06-2018
3Posts
0Likes
0Solutions
Apr 06, 2018Last Visited
User
Activity
User
Profile
Latest posts by promsos
| Subject | Views | Posted |
|---|---|---|
| 2144 | 04-18-2013 09:09 AM | |
| 2144 | 04-18-2013 08:48 AM | |
| 2235 | 04-17-2013 07:59 AM |
User Badges
Community Statistics
| Member Since | 07-27-2011 05:58 AM |
| Date Last Visited | 04-06-2018 11:08 AM |
| Posts | 3 |
04-18-2013
09:09 AM
Hi Klaus - Maybe my example of using LogMeIn wasn't the best example to use in this situation because that may require a user to go out and manually initiate a connection. What we'll really be doing is allowing a vendor to remotely connect to certain PC's in our company via TeamViewer or a similar app. It's possible that these machines won't actually be logged into by a user for months (they just sit there pulling and pushing data) and even when service is needed a user probably won't be logging into the machine before support tries to connect remotely. Because user's won't login often (if at all) any solution using a username won't work for us since the username will most liekly . Maybe I misunderstood the solution you're proposing, if so just let me know. Thanks for the response. Paul
... View more
04-18-2013
08:48 AM
Thanks for the idea, this seems like it would probably work for me. I'm not on 5.x yet but I'll look into an upgrade to potentially use this solution.
... View more
04-17-2013
07:59 AM
I'm wondering if there is a way to create a policy based on workstations in a certain AD group. Here's what I'm trying to accomplish... I want to have a security group in our Active Directory, say "Privileged Workstations" for a name. Any workstation that is a member of the "Privileged Workstations" group will have a static IP and will need to have access to applications that are outside of our normal scope of allowed applications. My goal is to setup a sort of self service group for our server team so if a server needs access to LogMeIn, for example, they can simply add the server to the AD group and I won't need to make any changes on my Palo Alto itself. I do not want to write my Policy based on username as the username for the servers is not consistently identified (unless there is a way to statically create a username to ip mapping?). Has anyone set anything up like this before? Maybe I'm just missing something really easy, or maybe this just can't be accomplished. Any help would be appreciated. Thanks. Paul
... View more
Labels:
- Labels:
-
Configuration
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
04-06-2018
11:08 AM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks