This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
For details on cookie usage on our site, read our Privacy Policy
About jthoyle
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About jthoyle
12-15-2021
1Post
0Likes
0Solutions
Dec 15, 2021Last Visited
User
Activity
User
Profile
Latest posts by jthoyle
| Subject | Views | Posted |
|---|---|---|
| 8729 | 11-16-2021 10:39 AM |
User Badges
Community Statistics
| Member Since | 05-10-2017 07:33 AM |
| Date Last Visited | 12-15-2021 12:57 AM |
| Posts | 1 |
11-16-2021
10:39 AM
In order to use WinRM-HTTP, you need to make sure your PA service account in AD has been added to the "Remote Management Users" group. You also have to configure a Kerberos Server Profile on the device tab in the PA. Just create a new Kerberos profile, and add the FQDN of all of your domain controllers to it. Once that is done, you have to apply that Kerberos Server Profile by clicking the 'gear' icon in the Palo Alto Networks User-ID Agent Setup area under Device > User Identification. (select it using the drop-down) Once you commit those changes, your DCs under Server Monitoring should show "Connected" instead of "Connection Refused".
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
12-15-2021
12:57 AM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks