https://live.paloaltonetworks.com/t5/next-generation-firewall/adhering-to-openssl-security-level-2-post-uprade-to-pan-os-11-1/m-p/624204#M5023 <P>Hello,&nbsp;</P> <P>&nbsp;</P> <P>In the PAN-OS upgrade guide there is a new step (step 7) when upgrading to PAN-OS 11.1 &amp; later which refers to regenerating or re-importing all certificates to adhere to OpenSSL Security Level 2 requirements.</P> <P>&nbsp;</P> <OL> <LI>Is there any easy way to check the status of existing certificates to ensure they meet this standard?&nbsp;&nbsp;</LI> <LI>Will any reference to existing certificates that do not meet this requirement cause authentication or SSL/TLS issues?&nbsp;</LI> </OL> <P>Thanks&nbsp;</P> <P>&nbsp;</P> <P><LI-PRODUCT title="NGFW" id="NGFW"></LI-PRODUCT>&nbsp;</P> Mon, 18 Nov 2024 20:58:28 GMT nopasswd4u2 2024-11-18T20:58:28Z https://live.paloaltonetworks.com/t5/next-generation-firewall/adhering-to-openssl-security-level-2-post-uprade-to-pan-os-11-1/m-p/624204#M5023 <P>Hello,&nbsp;</P> <P>&nbsp;</P> <P>In the PAN-OS upgrade guide there is a new step (step 7) when upgrading to PAN-OS 11.1 &amp; later which refers to regenerating or re-importing all certificates to adhere to OpenSSL Security Level 2 requirements.</P> <P>&nbsp;</P> <OL> <LI>Is there any easy way to check the status of existing certificates to ensure they meet this standard?&nbsp;&nbsp;</LI> <LI>Will any reference to existing certificates that do not meet this requirement cause authentication or SSL/TLS issues?&nbsp;</LI> </OL> <P>Thanks&nbsp;</P> <P>&nbsp;</P> <P><LI-PRODUCT title="NGFW" id="NGFW"></LI-PRODUCT>&nbsp;</P> Mon, 18 Nov 2024 20:58:28 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/adhering-to-openssl-security-level-2-post-uprade-to-pan-os-11-1/m-p/624204#M5023 nopasswd4u2 2024-11-18T20:58:28Z