The following topics describe the different keys and certificates that Palo Alto Networks® firewalls and Panorama use, and how to obtain and manage them:
- Keys and Certificates
- Default Trusted Certificate Authorities (CAs)
- Certificate Revocation
- Certificate Deployment
- Set Up Verification for Certificate Revocation Status
- Configure the Master Key
- Obtain Certificates
- Export a Certificate and Private Key
- Configure a Certificate Profile
- Configure an SSL/TLS Service Profile
- Replace the Certificate for Inbound Management Traffic
- Configure the Key Size for SSL Forward Proxy Server Certificates
- Revoke and Renew Certificates
- Secure Keys with a Hardware Security Module
Configure Revocation Status Verification of Certificates
Configure Revocation Status Verification of Certificates The firewall and Panorama use certificates to authenticate users and devices for such applications as Captive Portal, GlobalProtect, site-to-site ...
Device > Certificate Management > Certificates
Device > Certificate Management > Certificates Select Device Certificate Management Certificates Device Certificates to manage (generate, import, renew, delete, and revoke) certificates, which are used ...
WildFire Appliance Mutual SSL Authentication
You need an SSL/TLS Service Profile, a server Certificate Profile, and a client Certificate Profile to enable mutual authentication using custom certificates between a WildFire ...
Deploy Machine Certificates for Authentication
Deploy Machine Certificates for Authentication To confirm that the endpoint belongs to your organization, use your own public-key infrastructure (PKI) to issue and distribute machine ...
Other Supported Actions to Manage Certificates
Other Supported Actions to Manage Certificates After you generate the certificate, its details display on the page and the following actions are available: Other Supported ...
How Are SSL/TLS Connections Mutually Authenticated?
How Are SSL/TLS Connections Mutually Authenticated? In a regular SSL connection, only the server needs to identify itself to the client by presenting its certificate. ...
Generate a Certificate
Generate a Certificate Palo Alto Networks firewalls and Panorama use certificates to authenticate clients, servers, users, and devices in several applications, including SSL/TLS decryption, Captive ...
Set Up Verification for Certificate Revocation Status
Set Up Verification for Certificate Revocation Status To verify the revocation status of certificates, the firewall uses Online Certificate Status Protocol (OCSP) and/or certificate revocation ...
Manage Firewall and Panorama Certificates
Manage Firewall and Panorama Certificates Device > Certificate Management > Certificates > Device Certificates Panorama > Certificate Management > Certificates Select Device Certificate Management Certificates ...