topic Re: AnyDesk application is not recognised in Palo Alto version 10.2.17 in General Topics

AnyDesk application is not recognised in Palo Alto version 10.2.17

Alpalo — Mon, 24 Nov 2025 09:39:42 GMT

Hello, team:

The AnyDesk application is not recognised in Palo Alto version 10.2.17; it is classified as SSL and I cannot block it.

Does anyone know if this is a problem with Palo Alto?

I don't have any decryption policies, In my company, we can only block this through apps by policy. . Can anyone help me?

Best regards

Re: AnyDesk application is not recognised in Palo Alto version 10.2.17

MP18 — Mon, 24 Nov 2025 22:37:02 GMT

@Alpalo Under Objects, Application do search for AnyDesk app see if it shows up.

If decryption is not enabled, then firewall will see the application as ssl if it is using port 443.

Regards

Re: AnyDesk application is not recognised in Palo Alto version 10.2.17

Alpalo — Sun, 30 Nov 2025 17:55:16 GMT

Is there no way for the AnyDesk app to be recognised unless we decrypt it?

Re: AnyDesk application is not recognised in Palo Alto version 10.2.17

Alpalo — Tue, 09 Dec 2025 07:51:28 GMT

Is there no way for the AnyDesk app to be recognised unless we decrypt it?

Re: AnyDesk application is not recognised in Palo Alto version 10.2.17

kiwi — Tue, 09 Dec 2025 09:18:42 GMT

Hi @Alpalo ,

AnyDesk is placed in the Do Not Decrypt Policy by default (Device > Certificate Management > SSL Decryption Exclusion). That said, App-ID should still work by inspecting the initial TLS handshake (Server Hello, SNI, certificate details) to identify the application as anydesk-base.

First, since the client software may have recently changed, please confirm that your firewall has the latest Application and Threat Content updates installed. This is the most common reason for application misidentification.

If the issue persists after updating the content, it suggests either a potential bug or a conflict with a custom policy. Before escalating to $\text{TAC}$ , it is worth reviewing the community fix for related AnyDesk issues:

https://live.paloaltonetworks.com/t5/general-topics/solution-for-quot-ssl-decryption-bypass-for-anydesk-quot/td-p/385369/highlight/true

https://live.paloaltonetworks.com/t5/general-topics/anydesk-issue/m-p/516607#M107283

Reading these discussions, the recurring fix for AnyDesk connectivity problems (when the connection breaks) involves importing the latest AnyDesk Root CA. Although this is primarily to solve certificate trust errors, the lack of trust can sometimes prevent the App-ID engine from fully resolving the certificate chain metadata, causing the session to fall back to the generic ssl identity.

It may be necessary to import the latest AnyDesk Root CA and mark it as a trusted certificate to allow App-ID to fully process the handshake and correctly identify the traffic.

Kind regards,

Re: AnyDesk application is not recognised in Palo Alto version 10.2.17

Alpalo — Tue, 09 Dec 2025 16:13:20 GMT

Thank you for your reply, @kiwi, but the problem is that the FW detects Anydesk as SSL instead of ANYDESK.

How I can import the trust certificate?

Regards