Symptom of management network issue includes being unable to connect to CFP-MGTSRV, HQACCESS, switches and palos. We are able to access CFP-PRINT19 and CFP-FS19-01 as they are part of the user/access network.
User-ID agent had stopped on DC1 for as-yet unknown reasons, and the agent on DC2 had an unrelated issue that was preventing the HQ firewalls from connecting. The lack of User-ID data on the firewall was preventing access to the management network in some cases.
DC1 User-ID Agent service
Group mapping Palo - Device > User Identification > Group Mapping Settings
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article