Domain Check in HIP Profile

Domain Check in HIP Profile

23942
Created On 09/25/18 18:51 PM - Last Modified 06/06/23 07:33 AM


Resolution


Issue

If a user authenticates successfully as the logs say, why is the domain not shown in the command: show global-protect-gateway current user?

 

Resoltuion

The DNS domain name might not work since the Palo Alto Networks firewall is looking for the domain name associated with the AD machine account name, which contains the NT domain name. For example, the DNS domain is paloaltonetworks.local, but the NT domian that needs checked for in the HIP object is, PALOALTONETWORK.

 

owner: panagent
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClRFCA0&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language