GetSecureScore

How to Fix Unable to Access Palo Alto Web Interface “Hmmm can’t reach this page”

If you have problem like below with Palo Alto devcices Here is the solutions: configuredelete deviceconfig system ssl-tls-service-profilecommit More details here if needed. Symptom Environment Cause The certificate is expired or there are other issues with the certificate. The web server process is not allowed to run on expired certificates as a standard security practice, Read More

GetSecureScore

How to Configure a GlobalProtect Gateway

Add a gateway. Add a new gateway (NetworkGlobalProtectGateways). Name the gateway.The gateway name cannot contain spaces and must be unique for each virtual system. As a best practice, include the location or other descriptive information to help users and administrators identify the gateway. (Optional) Select the virtual system Location to which this gateway belongs. Specify the network information that Read More

GetSecureScore

How to Fix GlobalProtect Gateway Certificate Error 

SymptomWhen trying to connect GlobalProtect to the Palo Alto Networks firewall, it is successfully connecting to the portal, but gives a certificate error when it tries to connect to the gateway. When using older versions of the agent it connects without issue. Environment Pan-Os Global Protect Cause This issue might be caused by a new check Read More

GetSecureScore

How to Generate a CSR (Certificate Signing Request) & Import the Signed Certificate in Palo Alto

Environment PAN-OS 7.1 and above. Palo Alto Firewall. Resolution PAN-OS includes a feature to create a Certificate Signing Request (CSR). This feature can create a Certificate Signing Request (CSR) for sending to a public third-party Certificate Authority like Verisign, Globalsign, Entrust, and so on… Steps Generate the CSR Go to Device > Certificate Management > Certificates. Read More

GetSecureScore

Configure Active/Passive HA on Palo Alto Firewalls

The following procedure shows how to configure a pair of firewalls in an active/passive deployment as depicted in the following example topology. To configure an active/passive HA pair, first complete the following workflow on the first firewall and then repeat the steps on the second firewall. Connect the HA ports to set up a physical Read More