See the New and Modified App-IDs in a Content Release
For both downloaded and installed content updates,
you can see a list of the new and modified App-IDs the update includes.
Full application details are provided, and importantly, updates
to applications with network-wide impact (for example, LDAP or IKE)
are prominently flagged as a recommended for policy review. For
modified App-IDs, application details also describe how coverage
is either now expanded or more precise.
to refresh the list of available content updates.
For either a downloaded or currently installed content
link in the
to view details on newly-identified and modified applications in
Review the App-IDs this content release introduces or
modifies since the last content version.
New and modified App-IDs are listed separately. Full application
details are provided for each, and App-IDs that Palo Alto Networks foresees
as having network-wide impact are flagged as recommended for policy
New App-ID details that you can use to
assess possible impact to policy enforcement include:
—Lists the application signatures that this App-ID
relies on to uniquely identify the application. If one of the application
signatures listed in the
is disabled, the dependent App-ID is also disabled.
Previously Identified As
App-IDs that matched to the application before the new App-ID was
installed to uniquely identify the application.
—All App-IDs display
as enabled when a content release is downloaded, unless you choose
to manually disable the App-ID signature before installing the content
For modified App-IDs, details include information
, and application metadata changes. The
Expanded Coverage and Remove False Positive fields both indicate
how the application’s coverage has changed (it’s either more comprehensive
or has been narrowed) and a clock icon indicates a metadata change,
where certain application details are updated.