'Enable Server Session Read' meaning for User ID Agent
What does "Enable Server Session Read" in the User-ID Agent mean?
- Any PAN-OS.
- Palo Alto Firewall
- Windows User-ID Agent.
- PAN-OS integrated User-ID Agent
"Enable Server Session Read" is an additional server-based method to resolve users to IP addresses using the current user sessions in the Domain Controller.
Users connected to resources on the Domain controller, such as shared folders and printers, have their IP addresses and user names stored in the server session table.
PAN agent is able to read this table and use it to make user to IP mappings.
The Agent will require Server Operator privileges to read the session table. In an environment where user drives are hosted on the Domain Controller, this can be a very efficient way to match users to their IP addresses.