>
    GlobalProtect Portal and Gateway Support for TLSv1.3
    Focus
    Download PDF
    Focus
    1. Home
    2. What's New in the NetSec Platform
    3. What's New in the NetSec Platform
    4. May 2024
    5. GlobalProtect Portal and Gateway Support for TLSv1.3
    Download PDF
    What's New in the NetSec Platform

    GlobalProtect Portal and Gateway Support for TLSv1.3

    Table of Contents

    GlobalProtect Portal and Gateway Support for TLSv1.3

    GlobalProtect Portal and Gateway Support for TLSv1.3
    You can now configure SSL/TLS service profiles using TLSv1.3 on the firewall that is hosting the GlobalProtect portal or gateway to establish TLS connectivity between GlobalProtect components. TLSv1.3 is the latest version of the TLS protocol, which provides increased network security by removing the weak ciphers supported in the earlier versions of TLS and adding more secure cipher suites. In addition, the GlobalProtect gateway and portal now support the following TLSv1.3 cipher suites:
    • TLS-AES-128-GCM-SHA256
    • TLS-AES-256-GCM-SHA384
    • TLS-CHACHA20-POLY1305-SHA256
    You can configure SSL/TLS service profiles with TLSv1.3 to provide enhanced security and a faster TLS handshake while establishing connection between GlobalProtect components. To provide the strongest security, you must set both the minimum and maximum supported version as TLSv1.3 in the SSL/TLS service profile.

    © 2024 Palo Alto Networks, Inc. All rights reserved.