This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About IanJohnston
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About IanJohnston
12-15-2015
4Posts
0Likes
0Solutions
Dec 15, 2015Last Visited
User
Activity
User
Profile
Latest posts by IanJohnston
| Subject | Views | Posted |
|---|---|---|
| 1915 | 07-31-2015 12:40 PM | |
| 1613 | 06-05-2014 02:13 PM | |
| 2689 | 08-19-2013 07:49 AM |
User Badges
Community Statistics
| Member Since | 07-08-2013 05:07 AM |
| Date Last Visited | 12-15-2015 10:52 AM |
| Posts | 4 |
07-31-2015
12:40 PM
Hi, I've worked out how to recover the User ID, or UID, from a wireless network logon by sending syslog messages from the Cisco Access Control Server, or ACS, to a syslog-sender configured on my firewall. For wired connections I can recover UID and AD group membership through the PAN UID Agent and Group Mapping Settings. But I still can't figure out how to get an AD group membership/mapping for my wireless users. Wireless users connect via a Cisco wireless controller and their logins are controlled by a Cisco Access Control Server, which uses Windows AD as an external identity store. I have tested a couple of rules and can control access by UID for users connected to the wireless network but I can not use AD User Groups; however, I can use AD User Groups for users connected by wired settings, using standard windows logins, a couple of PAN UID Agents running on VMs, and Device | User Identification | Group Mapping Settings tab | <mapping object | Server Profile & Group Include List > I'd really appreciate any pointers on how I might get this working; thanks, Ian
... View more
Labels:
- Labels:
-
Configuration
-
Set Up
-
User-ID
06-05-2014
02:13 PM
Does PaloAlto provide any protection against this malware, either in downloading the virus, making the DNS quesries to the list of .ru domains that the FBI released on June 4th, or in the call backs that it makes?
... View more
08-19-2013
07:49 AM
I have a similar issue: I have several outside vendors defined as local users, they can log on to a 'captive portal' and then connect to a server in our DMZ. The users are created, enabled, and added to a user group; and also added to the users column of the policy allowing them to connect to the server - basically any source, these users, that destination, https. Of the two users I have added one is working fine but the other fails at the firewall authentication with the system log message: User '<name>' failed authentication. Reason: User is not in allowlist From: <remote IP>. Anyone have any ideas where I should be looking for an answer? Thanks Ian
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
12-15-2015
10:52 AM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks