Since the latest release of Palo Alto Network PAN-OS 9.0.0 the VM-Series firewall now supports the VM-Series plugin, a built-in-plugin architecture for integration with public clouds or private cloud hypervisors, with the plugin you can now configure VM-Series firewalls with active/passive high availability (HA) in Azure. I will cover some of the requirements in short which is needed to setup HA in Azure.
Tag: Palo Alto Networks
In Palo Alto Networks latest release 9.0.0, a new feature was added that allows you to have mixed authentication methods to the same Global Protect portal and/or gateway.
When this feature is enabled it will basically allow your users to authenticate with user credentials and/or client certificates. The options are to either to require both user credentials and client certificates or you can allow user credentials or client certificates.
On top of this you can also set different requirements depending on what OS the user connects from. Below are the current list for available operating systems you can set policies on:
With this you could create an authentication-profile that requires Windows-users to authenticate with both user credentials and client certificates.
Then create another that allows your Android-users to authenticate with either user credentials or client certificates.
This feature could be used in some different cases, for example if you already have two different portals and one of them only requires user credentials for authentication. In that case you could put the two configurations together and save the public IP that was used for the other portal/gateway.
If you have any questions, feel free to email me at email@example.com or comment down below.
- How to create a custom Address Lists in Exchange Online 23 April, 2019
- Deploy separate Intune workloads to different collections (Co-management) 16 April, 2019
- Palo Alto VM-Series with active/passive HA support in Azure 12 April, 2019
- Windows 7 licens key is “not genuine” and activation failes after installing KB971033. 9 April, 2019
- mixed authentication methods added for Global Protect 7 April, 2019