PAN-OS Release Notes
  • PAN-OS Release Notes
  • All Documentation
>
Management Features
Focus
Download PDF
Focus
  1. Home
  2. PAN-OS
  3. PAN-OS Release Notes
  4. Features Introduced in PAN-OS 11.0
  5. Management Features
Download PDF

Management Features

Table of Contents
End-of-Life (EoL)
What new management features are in PAN-OS 11.0?
New Management Feature
Description
Skip Software Version Upgrade
You can now upgrade and downgrade standalone and Panorama managed devices running 10.1 or later more efficiently by skipping up to three software versions. You can skip either two major releases and one minor release, or one major release and two minor releases. The ability to skip multiple software releases during an upgrade or downgrade shortens the time needed for the maintenance window and enables you to take advantage of the latest PAN-OS innovations more quickly. This feature also enhances the capabilities of the multi-image download option and pre-install validation check, which reduces the number of steps in the process.
TLSv1.3 Support for Management Access
PAN-OS 11.0 introduces two management configuration options that let you define TLSv1.3 as your preferred TLS protocol and select a TLSv1.3 certificate. You can use the new settings to specify the TLS versions and certificates your management interface supports outside of SSL/TLS service profiles. For example, you can select tlsv1.3_only TLS mode for a faster, more secure connection that meets your regulatory requirements.
Multi-Vsys Capability for the PA-400 Series Firewalls
Multiple virtual systems featuring shared gateway support are now available for most PA-400 Series firewalls with a multi-vsys license. PA-440 firewalls support up to two virtual systems. PA-450 and PA-460 firewalls support up to five virtual systems.
Strata Cloud Manager Command Center
The Strata Cloud Manager Command Center is your new NetSec homepage; it is your first stop to assess the health, security, and efficiency of your network. In a single view, the command center shows you all users and IoT devices accessing the internet, SaaS applications, and private apps, and how Prisma Access, your NGFWs, and your security services are protecting them.
The command center provides you with four different views, each with its own tracked data, metrics, and actionable insights to examine and interact with:
  • Summary: A high-level look at all your network and security infrastructure. Monitor the traffic between your sources (users, IoT) and applications (private, SaaS), and see metrics onboarded security subscriptions.
  • Threats: Dig deeper into anomalies on your network and block threats that are impacting your users. Review the traffic inspected on your network and see how threats are being detected and blocked around the clock by your Cloud-Delivered Security subscriptions.
  • Operational Health: Review incidents of degraded user experience on your network and see root-cause analysis of the issues and remediation recommendations.
  • Data Security: Find high-risk sensitive data and update data profiles to further secure your network. Review the sensitive data flow across your network and SaaS applications.
When the command center surfaces an issue through one of these views that you should address or investigate (an anomaly, a security gap, a degraded user experience, something that impacts the security and health of your network), it provides a path to where you can take actions to further secure your network.
View Preferred and Base Releases of PAN-OS Software
PAN-OS 11.0.5 and later 11.0 releases
The Panorama web interface now displays the preferred releases and the corresponding base releases of PAN-OS software. Before you upgrade or downgrade Panorama or PAN-OS, you can view the list of preferred and base releases and choose your preferred target PAN-OS release. Preferred releases offer the latest and the most advanced features and ensure stability and performance. When there are no preferred releases available, the corresponding base version is not displayed. If necessary, you can choose to view either preferred releases or base releases.

Technical Documentation

Company

Legal Notices

© 2025 Palo Alto Networks, Inc. All rights reserved.