topic Re: SSL Self Signed Certificate Vulnerability in Advanced Threat Prevention Discussions https://live.paloaltonetworks.com/t5/advanced-threat-prevention/ssl-self-signed-certificate-vulnerability/m-p/330401#M837 <P>Port 5007 is used by User-ID redistribution. If you are not using User-ID redistribution you should close the service (and therefore the port will be closed). To disable the service check the Management Interface Profile tied to the Interface, and disable the User-ID service.</P> Thu, 28 May 2020 19:54:22 GMT mivaldi 2020-05-28T19:54:22Z SSL Self Signed Certificate Vulnerability https://live.paloaltonetworks.com/t5/advanced-threat-prevention/ssl-self-signed-certificate-vulnerability/m-p/330390#M836 <P>Does anybody know how to mitigate this vulnerability? This is being detected on our PA-3020 series firewalls running PAN OS 8.1.13.</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="SSL self signed.png" style="width: 999px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/25887i9875B5E2F1AEF0E3/image-size/large/is-moderation-mode/true?v=v2&amp;px=999" role="button" title="SSL self signed.png" alt="SSL self signed.png" /></span></P> Thu, 28 May 2020 18:43:47 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/ssl-self-signed-certificate-vulnerability/m-p/330390#M836 Fr4nk4 2020-05-28T18:43:47Z Re: SSL Self Signed Certificate Vulnerability https://live.paloaltonetworks.com/t5/advanced-threat-prevention/ssl-self-signed-certificate-vulnerability/m-p/330401#M837 <P>Port 5007 is used by User-ID redistribution. If you are not using User-ID redistribution you should close the service (and therefore the port will be closed). To disable the service check the Management Interface Profile tied to the Interface, and disable the User-ID service.</P> Thu, 28 May 2020 19:54:22 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/ssl-self-signed-certificate-vulnerability/m-p/330401#M837 mivaldi 2020-05-28T19:54:22Z Re: SSL Self Signed Certificate Vulnerability https://live.paloaltonetworks.com/t5/advanced-threat-prevention/ssl-self-signed-certificate-vulnerability/m-p/330420#M838 <P>It looks like an expected scan resault, because the certificate is a self signed certificate.</P> Thu, 28 May 2020 21:25:22 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/ssl-self-signed-certificate-vulnerability/m-p/330420#M838 elaabdin 2020-05-28T21:25:22Z