>
    Strata Copilot
    User-ID agent Self-signed Certificate Expiration
    Focus
    Download PDF
    Focus
    1. Home
    2. Next-Generation Firewall
    3. NGFW Incidents Reference
    4. User-ID agent Self-signed Certificate Expiration
    Download PDF
    Next-Generation Firewall

    User-ID agent Self-signed Certificate Expiration

    Table of Contents

    User-ID agent Self-signed Certificate Expiration

    Incident Code
    INC_NGFW_UID_AGENT_CERT_EXPIRATION
    Severity
    Warning
    Category
    Network Services
    Subcategory
    User-ID
    Description
    This alert detects the expiration of the User-ID agent self-signed certificate on November 18, 2024. The alert detects if a PAN-OS device has a User-ID policy configured, meets the PAN-OS version requirements per Table 1 of the advisory, and uses a self-signed certificate. It does not apply if custom certificates are in use or User-ID mappings are provided only by an NGFW that serves as a User-ID agent or from GlobalProtect agents.
    Raise Condition
    This incident is triggered if the firewall is running a PAN-OS version affected by the User-ID agent self-signed certificate expiration and has a configuration impacted by it.
    Clear Condition
    This incident is cleared when the firewall is no longer running a PAN-OS version affected by the User-ID agent self-signed certificate expiration, or the configuration is no longer impacted.

    © 2026 Palo Alto Networks, Inc. All rights reserved.