topic UserTrust CA certificate expiry on the weekend causing sites to be blocked in General Topics https://live.paloaltonetworks.com/t5/general-topics/usertrust-ca-certificate-expiry-on-the-weekend-causing-sites-to/m-p/330899#M83845 <P>Hi,&nbsp;&nbsp;</P><P>&nbsp;</P><P>It appears that the UserTrust root CA and the Comodo RSA CA certificates expired this weekend and now my users are getting blocked since the certificate has expired.&nbsp; The sites are accessable through chrome when not behind the Palo.&nbsp; I've tried importing trusted CAs and the only thing that works is to add the site to a URL list and exclude it from SSL Decryption.&nbsp; We are currently running two 5520's with PAN OS 9.0.7.&nbsp; Any ideas would be appreciated</P><P>&nbsp;</P><P>Thanks</P><P>Jonathon Page</P> Mon, 01 Jun 2020 20:05:24 GMT jpage386 2020-06-01T20:05:24Z UserTrust CA certificate expiry on the weekend causing sites to be blocked https://live.paloaltonetworks.com/t5/general-topics/usertrust-ca-certificate-expiry-on-the-weekend-causing-sites-to/m-p/330899#M83845 <P>Hi,&nbsp;&nbsp;</P><P>&nbsp;</P><P>It appears that the UserTrust root CA and the Comodo RSA CA certificates expired this weekend and now my users are getting blocked since the certificate has expired.&nbsp; The sites are accessable through chrome when not behind the Palo.&nbsp; I've tried importing trusted CAs and the only thing that works is to add the site to a URL list and exclude it from SSL Decryption.&nbsp; We are currently running two 5520's with PAN OS 9.0.7.&nbsp; Any ideas would be appreciated</P><P>&nbsp;</P><P>Thanks</P><P>Jonathon Page</P> Mon, 01 Jun 2020 20:05:24 GMT https://live.paloaltonetworks.com/t5/general-topics/usertrust-ca-certificate-expiry-on-the-weekend-causing-sites-to/m-p/330899#M83845 jpage386 2020-06-01T20:05:24Z Re: UserTrust CA certificate expiry on the weekend causing sites to be bloc https://live.paloaltonetworks.com/t5/general-topics/usertrust-ca-certificate-expiry-on-the-weekend-causing-sites-to/m-p/331139#M83880 <P>Have you senn this topic discussing the same problem:</P><P><A href="https://live.paloaltonetworks.com/t5/general-topics/sectigo-ca-chain-decryption-issues/m-p/330802#M83832" target="_blank">https://live.paloaltonetworks.com/t5/general-topics/sectigo-ca-chain-decryption-issues/m-p/330802#M83832</A><A href="https://live.paloaltonetworks.com/t5/general-topics/sectigo-ca-chain-decryption-issues/m-p/330802#M83832" target="_blank">https://live.paloaltonetworks.com/t5/general-topics/sectigo-ca-chain-decryption-issues/m-p/330802#M83832</A></P><P>&nbsp;</P><P>cu</P> Tue, 02 Jun 2020 17:32:25 GMT https://live.paloaltonetworks.com/t5/general-topics/usertrust-ca-certificate-expiry-on-the-weekend-causing-sites-to/m-p/331139#M83880 kbe 2020-06-02T17:32:25Z