Good point. SAML does seem like a more logical choice compared to RADIUS. Although, TACACS+ could also potentially work since it's often used for network access control and can provide user role information.
I agree with you on LDAP and Kerberos, but I'm not sure about RADIUS. Wouldn't SAML be a better choice since it's a popular identity federation protocol that can pass along user attributes like roles?
Hmm, this is an interesting question. It's testing our knowledge of user authentication services and which ones can provide both username and role information to the Palo Alto Networks NGFW. I'm thinking LDAP, RADIUS, and Kerberos are the three correct answers here.
Hmm, I think I've worked with a few of these authentication services before, but I'm not sure which ones can be modified for the Palo Alto NGFW. This is going to require some careful thinking.
Yun
6 hours agoCatalina
1 days agoHayley
1 days agoBuck
2 days agoVanna
2 days agoLaurel
3 days agoBronwyn
5 days agoRenea
7 days ago