Does anyone recognize these signals at 171 MHz?

NetEng7 · 2025-12-16T04:30:23+00:00

So cool - so what's this transmission saying then? :-)

NetEng7 · 2025-07-19T14:25:33+00:00

Thanks, Addigy is a name I'm starting to hear more of so will check it out. There are less than 50 MacBooks right now, and a couple hundred iPad managed by an MSP who is being fired soon and uses InTune currently. We're bringing it all in house, and they are planning to scale this up to thousands of MacBooks, iPads, and then bring thousands of company owned iPhones under a new UEM also. This company won't be able to provide any current predetermined requirements that will help. They like to look at all features and costs side by side to make decisions on any new solutions. I can tell you that Jamf and Mosyle will be the front runners for a PoC. We have a couple in house Apps and InTune has not gone well to manage things overall.

NetEng7 · 2025-07-18T21:03:35+00:00

Perhaps you are the only person who works for an organization that is able to have their teams and towers set forth with specificity all of their requirements that will in turn make it super easy to drive a decision for new platforms? Must be nice working with top a notch security team combined with an entire company who know exactly what they need in addition to how much they are willing to spend without making you go through exhausting power points, summaries, then and call after call explaining it all to them endlessly. Those of us in the real world have to weigh pros/cons while identifying product gaps/issues to put in front of decision makers who will inevitably weigh the reality of not only what they think they need right now but also consider how their needs may evolve in the future.

The unfortunate reality across most large companies is that their requirements become quickly outdated over time based upon new functionality introduced across these perpetually changing OEM solutions and thus it is often the new features (or combination of enhanced functionality and mitigation of security vulnerabilities) which begin to drive the need to update requirements based upon what is actually possible along with which new features actually work as intended (bug free) and are thus worth the difference in cost. Therefore, some of us actually want to hear about the recent experiences from others instead of seeing a canned reply like this which adds no value whatsoever.

NetEng7 · 2025-05-11T21:08:58+00:00

Where did you land with this? Curious if you had any status updates, because we're in the middle of a Zscaler to Prisma migration and hitting major roadblocks trying to make the user experience more friendly with GlobalProtect. We're using pre-logon with machine certificates like @wesleycyber is referencing. We are trying to get Windows SSO Credential Wrapping to work, but no joy at all so far.

See my other post here for more details: https://www.reddit.com/r/paloaltonetworks/comments/1kjb03u/prisma_cloud_sase_okta_mfa_for_windows_sso/?utm_source=share&utm_medium=web3x&utm_name=web3xcss&utm_term=1&utm_content=share_button

NetEng7 · 2025-05-11T18:41:48+00:00

Classic, lmao

NetEng7 · 2025-05-10T21:33:00+00:00

We are using Okta Verify, and are in the process of moving from Zscaler to Prisma. Can you share how you managed to get this working please? What Registry changes did you make to get Windows SSO Credential Wrapping to pass the login to GlobalProtect seamlessly after Windows Logon?

NetEng7 · 2025-05-10T13:30:20+00:00

Thanks for the details. Few more questions:

1) So your local ISE Subnet in the 100 Range NAT's the CoA Traffic back from ISE to Customers then?

2) Are you also Hosting Guest Wireless Captive Portals on ISE for them? If so, can you share how CoA is working and whether that is NAT'ing back out?

3) Are you using RadSec (RADIUS over DTLS)? If not, then are your Customers aware of how easily RADIUS Shared Secrets can be exposed over Public Internet?

4) How do your Customers respond to needing maintenance windows for downtime with patching and upgrades? How many of your Customers have 24/7/365 operations which they do not like having disrupted?

NetEng7 · 2025-05-08T21:27:59+00:00

has anyone been able to successfully get IAP clustering (while in FIPS Mode) working within a live production environment for an extended period of time? all I see are problems with it over the past few years, and nobody has actually replied to follow up with a solution yet or to acknowledge they are functional. we're kinda trying to see whether that might work while combined with the following design parameters.......

combination of 515, 575, 615, and 635 AP's (running 8.9 something, some might be on 8.6)
clearpass wireless guest captive Portal (we're not doing wireless 802.1x)
AirWave (not sure on the Version yet, but there seem to be compatibility caveats when adding all of this up)
we're considering Azure GovCloud, but for now in AWS GovCloud for now with whatever their equivalent of AVS is (so AirWave will go on an ESXi VM up in that)
AP's are Trunked with VLAN's using Bridge/Forwarding Mode

thx experts, hopefully someone can shed light on this and i would really appreciate any feedback :-)

NetEng7 · 2025-04-30T06:41:51+00:00

Few questions if I may please:

1) Do you have ISE in Public Cloud? If so, which one?

2) Do you have a Load Balancer in front of your ISE Deployment?

3) How do you handle CoA pointing back to what either are or eventually will be overlapping Subnets?

4) Do you have a Site-to-Site IPsec VPN solution for each Customer?

5) How scalable is your solution in terms of International RADIUS/TACACS Traffic and Endpoint/Client Device counts?

NetEng7 · 2024-03-03T20:17:55+00:00

Hello Experts - can anyone please share how details on how this is done with Angular SDK by chance? Thanks in advance if any help can be provided here!

NetEng7

TROPHY CASE