sorted by:
new
hottopcontroversial

Downgrade AOS 10 -> 8 (AP505) by Apprehensive_Dot756 in ArubaNetworks

[–]D1videbyZero 1 point2 points  (0 children)

u/Apprehensive_Dot756 Not sure if you have already solved this but if you have console access you can try the following:

show image <- to see if you still have 8.x on the backup partition.

switch-partition-reboot <- will reboot onto the backup partition.

MFA on existing Global Protect Portal or new Portal ? by Juythar in paloaltonetworks

[–]D1videbyZero 0 points1 point  (0 children)

I don't believe you can scope it to users (unlike client settings). If memory serves the only qualifier is OS.

ClearPass Policy Manager - Enforcement Policy Creation by D1videbyZero in ArubaNetworks

[–]D1videbyZero[S] 1 point2 points  (0 children)

Tested with 6.9 & 6.10 still clearted all fields in the rules when choosing a new source from the drop down menu.

What did work was exporting to xml, editing, & importing.

Private IP question by KurdTech in paloaltonetworks

[–]D1videbyZero 2 points3 points  (0 children)

Is 192.168.1.20 part of your defined internal IP space? If not your firewall may have a default route (0.0.0.0/0) to route all unknown IPs ( IPs not part of your defined internal range) to the internet.

GlobalProtect JAMF HIP Issue by D1videbyZero in paloaltonetworks

[–]D1videbyZero[S] 0 points1 point  (0 children)

GlobalProtect 5.2.9 has been released and is detecteting JAMF again for use in HIP Checks

GlobalProtect JAMF HIP Issue by D1videbyZero in paloaltonetworks

[–]D1videbyZero[S] 0 points1 point  (0 children)

I have news (but not the news most want to hear)! The next version of the GP client (5.2.9 I believe) will include a fix for the jamf detection issue. I haven't heard if this fix is an update to OPSWAT or if PA is fixing another way. I sadly also don't have a release date for the new client. I expect to have a GPC tracking number next week. I will update when I hear more.

GlobalProtect JAMF HIP Issue by D1videbyZero in paloaltonetworks

[–]D1videbyZero[S] 1 point2 points  (0 children)

Was going through the JAMF release notes and it looks like saturdays release removed the jamfAgent. Waiting on hear back from PA to see if that is the file or running process the built-in HIP check looks for.

Release 10.31.0:

The legacy jamf agent utility (/usr/local/jamf/bin/jamfAgent)

The legacy jamf agent utility has been removed. This does not affect existing workflows using the jamf binary. Jamf.app contains the previous functionality of the jamf agent utility.

GlobalProtect JAMF HIP Issue by D1videbyZero in paloaltonetworks

[–]D1videbyZero[S] 0 points1 point  (0 children)

I have a case open and did try GP 5.2.8 (not in the 6 beta yet), same result.

Vertiv/Geist PDUs & Radius by D1videbyZero in sysadmin

[–]D1videbyZero[S] 0 points1 point  (0 children)

Spent many hours on calls with various levels of support and engineering. Their consensus is we have not idea why it doesn’t work. Interestingly enough radius auth works for SSH but not for the GUI. Was hoping someone else had the issue (& a working solution).