should Xenapp servers with TS-Agents installed ip addresses be manully excluded from userID agent monitoring?
Had a brief glitch recently on PANOS 5.0.6 where it appears that an administrator perhaps RDP'd (or something similar) to a Citrix Xenapp server which triggered a user-id/ ip mapping and doing so seemed to override the TS-Agent user mapping for exist
...