Hello Team,
I m planning on doing this this weekend. I am using this two documents to walk me through. Anything that you might know that is not in here that could help the cause.
ttps://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g0000008U48CAE
and
Many Thanks in advance
Need authentication profile, SAML IP, and a certificate for the URL you are using. Otherwise once configured you probably wont ever touch it again (except to update certificate) in my opinion. Just go through the steps- looks like you have the correct articles. Make sure you go through all of the available configuration options and choose which best suit your use case.
Don’t forget to include :443 after the host name in the entity ID - not entirely documented as well as it should be in some places 
.
Thank you everyone for your response
The guide is all you really need. It’s super simple and once you know the process it can be done in 5 min. I work for an msp and have the process down pat.
Step by step video: Palo Alto Networks Training for Remote Access Authentication
Just did this with ADFS, the hardest part was getting the certificate validation correct in the PA. Check the System logs in addition to the GP logs on the PA.
Yeah this tripped my up too!