https://live.paloaltonetworks.com/t5/general-topics/block-vpn-access-for-lost-iphone-ipad/m-p/43445#M31873 <HTML><HEAD></HEAD><BODY><P>Hi, I followed the document on how to create VPN for IOS devices with certificates, and I got it working.</P><P></P><P>I was wondering how I can deny a device VPN access for a device which is lost or stolen. Deleting the certificate Client ID certificate on the PaloAlto Box does not help. The device can still connect.</P><P>The user can change his password but I would prefer that a connection attempt is already blocked.</P><P></P><P>Do I need to work with certificate revocation for such a feature? Is there a description how such an architecture can be used with the AploAlto? Am I right that you need an external CA instead of the PaloAlto box for such a feature?</P><P></P><P>Thanks for any help</P></BODY></HTML> Thu, 05 Apr 2012 12:22:27 GMT saint-paul 2012-04-05T12:22:27Z https://live.paloaltonetworks.com/t5/general-topics/block-vpn-access-for-lost-iphone-ipad/m-p/43445#M31873 <HTML><HEAD></HEAD><BODY><P>Hi, I followed the document on how to create VPN for IOS devices with certificates, and I got it working.</P><P></P><P>I was wondering how I can deny a device VPN access for a device which is lost or stolen. Deleting the certificate Client ID certificate on the PaloAlto Box does not help. The device can still connect.</P><P>The user can change his password but I would prefer that a connection attempt is already blocked.</P><P></P><P>Do I need to work with certificate revocation for such a feature? Is there a description how such an architecture can be used with the AploAlto? Am I right that you need an external CA instead of the PaloAlto box for such a feature?</P><P></P><P>Thanks for any help</P></BODY></HTML> Thu, 05 Apr 2012 12:22:27 GMT https://live.paloaltonetworks.com/t5/general-topics/block-vpn-access-for-lost-iphone-ipad/m-p/43445#M31873 saint-paul 2012-04-05T12:22:27Z https://live.paloaltonetworks.com/t5/general-topics/block-vpn-access-for-lost-iphone-ipad/m-p/43446#M31874 <HTML><HEAD></HEAD><BODY><P>Hi...You will need to issue client certificates whereby each iOS device will be given a cert.&nbsp; The PA device can be configured to check for client certs and also check against the CRL for any revocation.&nbsp; You can then revoke the particular client cert if the device is lost/stolen.</P><P></P><P>Thanks.</P></BODY></HTML> Fri, 06 Apr 2012 00:58:16 GMT https://live.paloaltonetworks.com/t5/general-topics/block-vpn-access-for-lost-iphone-ipad/m-p/43446#M31874 rmonvon 2012-04-06T00:58:16Z https://live.paloaltonetworks.com/t5/general-topics/block-vpn-access-for-lost-iphone-ipad/m-p/237548#M68054 <P>I have also lost my iPhone and I bought a new iPhone and I want to recover my iTunes account on my&nbsp;new iPhone&nbsp;but it shows me an error that <A href="http://www.ipadsupportnumber.com/blog/fix-ipad-error-code-4013/" target="_self">error 4013</A> and I don't&nbsp;how to recover this and remove this error.</P> Mon, 29 Oct 2018 06:20:51 GMT https://live.paloaltonetworks.com/t5/general-topics/block-vpn-access-for-lost-iphone-ipad/m-p/237548#M68054 teleworm 2018-10-29T06:20:51Z https://live.paloaltonetworks.com/t5/general-topics/block-vpn-access-for-lost-iphone-ipad/m-p/237552#M68055 <P>Somewhat the wrong forum <span class="lia-unicode-emoji" title=":face_with_tongue:">😛</span> (in case this isn't a Spam post)</P><P>...&nbsp;<A href="http://bfy.tw/KahO" target="_blank">http://bfy.tw/KahO</A></P> Mon, 29 Oct 2018 08:35:36 GMT https://live.paloaltonetworks.com/t5/general-topics/block-vpn-access-for-lost-iphone-ipad/m-p/237552#M68055 Remo 2018-10-29T08:35:36Z