Manage Access to User-ID Agents

Perform the following tasks for managing connections from the firewall to User-ID agents or redistribution points.
Task
Description
Display information / Refresh Connected
Select
Device
User Identification
User-ID Agents
or
Panorama
User Identification
to see whether the firewall or Panorama is connected to each User-ID agent or redistribution point. The Connected column displays a green icon to indicate a successful connection, a yellow icon to indicate a disabled connection, and a red icon to indicate a failed connection. If you think the connection status might have changed since you first viewed status,
Refresh Connected
to update the status display.
For the other displayed fields, see Configure Access to User-ID Agents.
Add
Delete
To remove the configuration that enables the firewall to connect to a User-ID agent or redistribution point,
Delete
the agent or redistribution point.
To disable access to a User-ID agent or redistribution point without deleting its configuration, edit it and clear the
Enabled
option.
Custom Agent Sequence
If you enable User-ID agents to perform NT LAN Manager (NTLM) authentication TechDocs_logo_cropped.png on behalf of the firewall, then—by default—the firewall communicates with the agents in the order you add them from top to bottom (see how to
Use for NTLM Authentication
in Configure Access to User-ID Agents). To change the order of how the firewall communicates with agents, click
Custom Agent Sequence
,
Add
each agent,
Move Up
or
Move Down
agents to reposition them, and click
OK
.
PDF/CSV
Administrative roles with a minimum of read-only access can export the User-ID agent configuration table as
PDF/CSV
. You can apply filters to create more specific table configuration outputs for things such as audits. Only visible columns in the web interface will be exported. See Configuration Table Export.

Related Documentation