Enable Redistribution of User Mappings Among Firewalls

  • Device > User Identification > User Mapping > Palo Alto Networks User-ID Agent Setup > Redistribution
To enable a firewall or virtual system to serve as a User-ID agent that redistributes user mapping information along with the timestamps associated with authentication challenges, configure the settings described in the following table. When you later connect this firewall to an appliance (such as Panorama) that will receive the mapping information and timestamps, the appliance uses these fields to identify the firewall or virtual system as a User-ID agent.
The complete procedure TechDocs_logo_cropped.png to configure firewalls to redistribute user mapping information and authentication timestamps requires additional tasks besides specifying the redistribution settings.
By default, a firewall with multiple virtual systems doesn’t redistribute user mapping information across its virtual systems, though you can configure them for redistribution.
Redistribution Settings
Description
Collector Name
Enter a collector name (up to 255 alphanumeric characters) to identify the firewall or virtual system as a User-ID agent.
Pre-Shared Key/Confirm Pre-Shared Key
Enter a pre-shared key (up to 255 alphanumeric characters) to identify the firewall or virtual system as a User-ID agent.

Related Documentation