This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Cookie Policy. Click Preferences to customize your cookie settings.
About jbusby
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About jbusby
03-31-2022
2Posts
0Likes
1Solution
Mar 31, 2022Last Visited
User
Activity
User
Profile
Latest posts by jbusby
| Subject | Views | Posted |
|---|---|---|
| 1345 | 03-31-2022 02:10 AM | |
| 1403 | 03-30-2022 04:25 AM |
User Badges
Community Statistics
| Member Since | 03-19-2021 07:52 AM |
| Date Last Visited | 03-31-2022 05:46 AM |
| Posts | 2 |
03-31-2022
02:10 AM
Found the solution: The upgrade must have removed this parameter that was set by a previous admin: set auth strict-username-check no It's actually documented here: https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-new-features/upgrade-pan-os/upgradedowngrade-considerations.html
... View more
03-30-2022
04:25 AM
Hi, I've been on hold for nearly 3hrs trying to get through to TAC after raising my L2 ticket online, the automated message told me I should try the live community 🙂 Since upgrading to 10.0 (aiming to get to 10.1.4) admins aren't able to login to Panorama to manage prisma access. Log shows: Authorization failed for user jblogs@domain.com via Web from 10.3X.XX.XX : Invalid configuration. No ado/role found jbloggs@domain.com 03/30 02:35:19 SAML SSO authenticated for user 'xxx@domain.com . auth profile 'Okta-MGMT-Profile', vsys 'shared', server profile 'Okta-management-SAML', IdP entityID 'http://www.okta.com/XXXXXXXX', From:10.3X.XX.XX 03/30 02:35:19 The users have dynamic "super user" role assigned. I'm not sure what "ado" means in the above log but it seems like SAML is authenticating successfully. Any help appreciated.
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
03-31-2022
05:46 AM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks