Yeah, TACACS+ is a solid option too. I'm just hoping they don't throw us a curve ball and include something obscure like Kerberos. That would really put my authentication protocol knowledge to the test!
Wait, isn't PAP like, the most basic authentication protocol out there? I don't think that would be a good fit for the Palo Alto NGFW. But I could be wrong, so I'm open to input from the group.
Good point. SAML does seem like a more logical choice compared to RADIUS. Although, TACACS+ could also potentially work since it's often used for network access control and can provide user role information.
I agree with you on LDAP and Kerberos, but I'm not sure about RADIUS. Wouldn't SAML be a better choice since it's a popular identity federation protocol that can pass along user attributes like roles?
Hmm, this is an interesting question. It's testing our knowledge of user authentication services and which ones can provide both username and role information to the Palo Alto Networks NGFW. I'm thinking LDAP, RADIUS, and Kerberos are the three correct answers here.
Hmm, I think I've worked with a few of these authentication services before, but I'm not sure which ones can be modified for the Palo Alto NGFW. This is going to require some careful thinking.
Chauncey
11 days agoEun
11 days agoYun
12 days agoCatalina
13 days agoHayley
13 days agoBuck
14 days agoVanna
14 days agoLaurel
15 days agoBronwyn
17 days agoRenea
19 days ago