This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About Brooks_Hassinger
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About Brooks_Hassinger
10-02-2023
6Posts
0Likes
0Solutions
Oct 02, 2023Last Visited
User
Activity
User
Profile
Latest posts by Brooks_Hassinger
| Subject | Views | Posted |
|---|---|---|
| 510 | 06-15-2023 08:33 AM | |
| 521 | 06-15-2023 08:19 AM | |
| 1326 | 03-03-2023 06:07 AM | |
| 5150 | 07-12-2022 02:12 PM | |
| 8752 | 05-31-2022 08:44 AM | |
| 8793 | 05-31-2022 06:10 AM |
Posts I Liked
| Subject | Likes | Author | Latest Post |
|---|---|---|---|
| 1 Like | |||
| 8 Likes | |||
| 3 Likes |
User Badges
Community Statistics
| Member Since | 05-31-2022 06:05 AM |
| Date Last Visited | 10-02-2023 10:53 AM |
| Posts | 6 |
06-15-2023
08:19 AM
That fix they do is temporary, the scheduled config exports will work for a few weeks then it will break again.
... View more
03-03-2023
06:07 AM
Just wanted to confirm that having PA TAC remotely access Panorama as root and add the host key to known_hosts does work. There must be a permissions issue introduced at some point. 10.2.4 is supposed to address this issue, coming out this month.
... View more
07-12-2022
02:12 PM
Is there a way to make this work where the user only receives an MFA push notification directly to their phone when they hit a Security Authentication policy? I want to use this with user-certificate authentication. My ideal workflow would be as follows: 1. With prelogon configured, the user authenticates with their user certificate (not machine), and by the time they're done signing into their laptop, they are authenticated to Globalprotect. This allows us to have usernames in the traffic logs, and formulate security policies (eg for Internet) with Security Profile Groups attached to them for L7 protection. As a fallback, SAML auth profile is configured, and if a user has an issue with their certificate they receive a SAML login prompt. Step 1 works absolutely perfectly. Anyone that just needs to use the internet never has to think about the VPN, they're always connected and protected by the Security Group profile that is configured. 2. When the user tries to access an internal resource in the network, (hitting a security authentication policy), they receive an MFA push to their company-issued phone. After they acknowledge the challenge, they are free to access internal resources for x amount of hours. is this a technically possible solution?
... View more
05-31-2022
08:44 AM
@jgreen1280 Thanks, that did the trick!
... View more
05-31-2022
06:10 AM
Hello, After clicking "Renew Certificate for GlobalProtect App Log Collection and Autonomous DEM" I get a message saying that the cert was successfully renewed. However, after I click OK, I can see that the ADEM cert is still slated to expire on 6/4/2022.
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
10-02-2023
10:53 AM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks