Device Certificate for a Palo Alto Networks Cloud Service
Table of Contents
Expand all | Collapse all
-
- Cloud Identity Engine Cipher Suites
-
- PAN-OS 11.0 GlobalProtect Cipher Suites
- PAN-OS 11.0 IPSec Cipher Suites
- PAN-OS 11.0 IKE and Web Certificate Cipher Suites
- PAN-OS 11.0 Decryption Cipher Suites
- PAN-OS 11.0 Administrative Session Cipher Suites
- PAN-OS 11.0 HA1 SSH Cipher Suites
- PAN-OS 11.0 PAN-OS-to-Panorama Connection Cipher Suites
- PAN-OS 11.0 Cipher Suites Supported in FIPS-CC Mode
-
- PAN-OS 10.2 GlobalProtect Cipher Suites
- PAN-OS 10.2 IPSec Cipher Suites
- PAN-OS 10.2 IKE and Web Certificate Cipher Suites
- PAN-OS 10.2 Decryption Cipher Suites
- PAN-OS 10.2 Administrative Session Cipher Suites
- PAN-OS 10.2 HA1 SSH Cipher Suites
- PAN-OS 10.2 PAN-OS-to-Panorama Connection Cipher Suites
- PAN-OS 10.2 Cipher Suites Supported in FIPS-CC Mode
-
- PAN-OS 10.1 GlobalProtect Cipher Suites
- PAN-OS 10.1 IPSec Cipher Suites
- PAN-OS 10.1 IKE and Web Certificate Cipher Suites
- PAN-OS 10.1 Decryption Cipher Suites
- PAN-OS 10.1 Administrative Session Cipher Suites
- PAN-OS 10.1 HA1 SSH Cipher Suites
- PAN-OS 10.1 PAN-OS-to-Panorama Connection Cipher Suites
- PAN-OS 10.1 Cipher Suites Supported in FIPS-CC Mode
-
- PAN-OS 9.1 GlobalProtect Cipher Suites
- PAN-OS 9.1 IPSec Cipher Suites
- PAN-OS 9.1 IKE and Web Certificate Cipher Suites
- PAN-OS 9.1 Decryption Cipher Suites
- PAN-OS 9.1 Administrative Session Cipher Suites
- PAN-OS 9.1 HA1 SSH Cipher Suites
- PAN-OS 9.1 PAN-OS-to-Panorama Connection Cipher Suites
- PAN-OS 9.1 Cipher Suites Supported in FIPS-CC Mode
-
- PAN-OS 8.1 GlobalProtect Cipher Suites
- PAN-OS 8.1 IPSec Cipher Suites
- PAN-OS 8.1 IKE and Web Certificate Cipher Suites
- PAN-OS 8.1 Decryption Cipher Suites
- PAN-OS 8.1 Administrative Session Cipher Suites
- PAN-OS 8.1 HA1 SSH Cipher Suites
- PAN-OS 8.1 PAN-OS-to-Panorama Connection Cipher Suites
- PAN-OS 8.1 Cipher Suites Supported in FIPS-CC Mode
Device Certificate for a Palo Alto Networks Cloud Service
Review which Palo Alto Networks cloud service requires a device certificate.
A Palo Alto Networks cloud service is a cloud-hosted service maintained and operated
by Palo Alto Networks.
The device certificate must be installed on the firewall, Panorama, and WildFire
appliance using the cloud service that is running one of the following releases:
- PAN-OS 11.0.2 or later releases
- PAN-OS 10.2.5 or later releases
- PAN-OS 10.1.10 or late releases
- (EoL) PAN-OS 10.0.5 or later 10.0 releases
- PAN-OS 9.1.8 or later 9.1 releases
- (EoL) PAN-OS 9.0.14 or later 9.0 releases
- (EoL) PAN-OS 8.1.19 or later 8.1 releases
Review the Palo Alto Networks cloud services listed below that require you install a device
certificate to function. Panorama management of firewalls, Dedicated Log Collectors, and
WildFire appliances, and downloading content and software updates from the Palo Alto
Networks Update Server does not require a device certificate. Additionally,
communication between a firewall and the WildFire appliance does not require a device
certificate.
Cloud Service | Firewall (Individual and Panorama-Managed) | Panorama |
|---|---|---|
AIOps | Yes | Yes |
App-ID Cloud Engine (ACE) | Yes | Yes |
Cloud Services (Prisma Access) | N/A | No |
Cortex Data Lake | ( PAN-OS 10.1 and later ) Yes | ( PAN-OS 10.1 and later ) Yes |
Device Telemetry | Yes | Yes |
Enterprise DLP | Yes | Yes |
Inline Categorization Requires Advanced URL Filtering license | Yes | No |
Inline Cloud Analysis Requires
Advanced Threat Protection license | Yes | No |
Internet of Things (IoT) security | Yes | Yes |
ZTP | No | Yes |