Hello Torem, i don´t have a Palo Alto on my side but if it works by just allowing the User-ID part then we will have to adjust our documentation.
Regards Fabrice Le ven. 18 mars 2022 à 09:45, Toren Smith via PacketFence-users < packetfence-users@lists.sourceforge.net> a écrit : > Just a quick question here: in all the documentation I've seen for > connecting PacketFence to a Palo Alto firewall for SSO, the > instructions state to grant the API account access to *everything*, > rather than just the User-ID part of the API. Does it really need all > that? I like the idea of that integration, but I don't think it'll fly > if it means creating a non-expiring admin account with full system > access. I can try running it with just the User-ID privileges, but I > figured I'd check here first to see if anyone knows for sure. Thanks! > > > _______________________________________________ > PacketFence-users mailing list > PacketFence-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/packetfence-users >
_______________________________________________ PacketFence-users mailing list PacketFence-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/packetfence-users
