Manage Access to User-ID Agents

Perform the following tasks for managing connections from the firewall to User-ID agents or redistribution points.
Display information / Refresh Connected
Select DeviceUser IdentificationUser-ID Agents or PanoramaUser Identification to see whether the firewall or Panorama is connected to each User-ID agent or redistribution point. The Connected column displays a green icon to indicate a successful connection, a yellow icon to indicate a disabled connection, and a red icon to indicate a failed connection. If you think the connection status might have changed since you first viewed status, Refresh Connected to update the status display.
For the other displayed fields, see Configure Access to User-ID Agents.
To remove the configuration that enables the firewall to connect to a User-ID agent or redistribution point, Delete the agent or redistribution point.
To disable access to a User-ID agent or redistribution point without deleting its configuration, edit it and clear the Enabled option.
Custom Agent Sequence
If you enable User-ID agents to perform NT LAN Manager (NTLM) authentication TechDocs_logo_cropped.png on behalf of the firewall, then—by default—the firewall communicates with the agents in the order you add them from top to bottom (see how to Use for NTLM Authentication in Configure Access to User-ID Agents). To change the order of how the firewall communicates with agents, click Custom Agent Sequence, Add each agent, Move Up or Move Down agents to reposition them, and click OK.
Administrative roles with a minimum of read-only access can export the User-ID agent configuration table as PDF/CSV. You can apply filters to create more specific table configuration outputs for things such as audits. Only visible columns in the web interface will be exported. See Configuration Table Export.

Related Documentation