I setup privacyIDEA with Palo Alto, but I have a problem. I have a Palo Alto PA-820 with software version 11.0.0 and I am running the privacyIDEA version 3.8.1 on an ubuntu VM. Global Protect (VPN) works as it should be. The problem is when I try to authenticate an administrators using the Radius.
Most of the times when I try to login to Web of Palo Alto it “stucks” after adding the OTP password for some time. At the end I get the message of Timeout.
The scenarios of it the web authentication that are working are:
1 . When I delete all the tokens of the users and the email token is automatically created.
2. When I change the timeout timers of Palo Alto and commit the changes. I changed the timeout of the Radius server Profile as well as the session Timeouts. It works once and then the same issue.
I enabled privacyIDEA debug mode and I was checking the logs on the PA. None of the two are showing any problems/errors.
I am currently out of ideas of what else to check. Any help would be appreciated.