Manifest Group Suggestions

Here is a suggested Manifest directory structure for Palo Alto firewalls. Network Services will need the path for each group in order for access to work.

Folders
 Groups  Description
 uw:domain:<YOUR_DEPT_NAME>:Firewall_Administration    
  Firewall_Admins-ReadWrite  NetIDs allowed to change/add/remove firewall settings.
  Firewall_Admins-ReadOnly  NetIDs allowed to view firewall settings & logs.



 uw:domain:<YOUR_DEPT_NAME>:VPN


Group/Service Specific Users
NetIDs allowed to log into a specific VPN.
"BELOW IS STILL BEING FINALIZED - PLEASE HOLD"

uw:domain:<YOUR_DEPT_NAME>:Firewall_Groups
AD groups that can be used to write firewall rules against after the user has logged into VPN.

Admins
System &/or Network Administrators

Users
Department Users

Vendors
Outside Vendors







Keywordsmanifest palo alto group vpn access domain firewall administration ou cn   Doc ID76116
OwnerScott B.GroupNetwork Services
Created2017-08-25 15:37:30Updated2019-01-15 11:52:28
SitesDoIT Help Desk, Network Services
Feedback  0   0