https://live.paloaltonetworks.com/t5/general-topics/palo-alto-the-server-s-x-509-certificate-cannot-be-trusted/m-p/338330#M85086 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/71795">@preetpk</a>,</P> <P>The management interface on the firewalls doesn't have a trusted certificate, or Nessus does not trust the certificate being used. This could be because you simply haven't installed a certificate for the GUI to utilize which is trusted by your CA, or that Nessus doesn't trust your CA.</P> Tue, 14 Jul 2020 03:18:35 GMT BPry 2020-07-14T03:18:35Z https://live.paloaltonetworks.com/t5/general-topics/palo-alto-the-server-s-x-509-certificate-cannot-be-trusted/m-p/338000#M85050 <P>We used Nessus tool to run security scan on the PA-5020 &amp; PA-3020 series&nbsp;&amp; it identified with the following below medium vulnerability:</P><P>&nbsp;</P><P>The server's X.509 certificate cannot be trusted.</P><P>&nbsp;</P><P>Please let me know, for any fix to this vulnerability.</P> Mon, 13 Jul 2020 06:55:53 GMT https://live.paloaltonetworks.com/t5/general-topics/palo-alto-the-server-s-x-509-certificate-cannot-be-trusted/m-p/338000#M85050 preetpk 2020-07-13T06:55:53Z https://live.paloaltonetworks.com/t5/general-topics/palo-alto-the-server-s-x-509-certificate-cannot-be-trusted/m-p/338330#M85086 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/71795">@preetpk</a>,</P> <P>The management interface on the firewalls doesn't have a trusted certificate, or Nessus does not trust the certificate being used. This could be because you simply haven't installed a certificate for the GUI to utilize which is trusted by your CA, or that Nessus doesn't trust your CA.</P> Tue, 14 Jul 2020 03:18:35 GMT https://live.paloaltonetworks.com/t5/general-topics/palo-alto-the-server-s-x-509-certificate-cannot-be-trusted/m-p/338330#M85086 BPry 2020-07-14T03:18:35Z https://live.paloaltonetworks.com/t5/general-topics/palo-alto-the-server-s-x-509-certificate-cannot-be-trusted/m-p/338603#M85121 <P>Thanks for the update, please let me know if it is possible to install internal CA certificate for Palo Alto Web-GUI. In case if internal CA certificate is supported, please share the KB article.</P> Wed, 15 Jul 2020 09:23:02 GMT https://live.paloaltonetworks.com/t5/general-topics/palo-alto-the-server-s-x-509-certificate-cannot-be-trusted/m-p/338603#M85121 preetpk 2020-07-15T09:23:02Z https://live.paloaltonetworks.com/t5/general-topics/palo-alto-the-server-s-x-509-certificate-cannot-be-trusted/m-p/596925#M118740 <P><A href="https://community.tenable.com/s/article/How-To-Resolve-51192-SSL-Certificate-Cannot-Be-Trusted-quick-Fix?language=en_US" target="_blank">https://community.tenable.com/s/article/How-To-Resolve-51192-SSL-Certificate-Cannot-Be-Trusted-quick-Fix?language=en_US</A></P> Thu, 05 Sep 2024 07:20:47 GMT https://live.paloaltonetworks.com/t5/general-topics/palo-alto-the-server-s-x-509-certificate-cannot-be-trusted/m-p/596925#M118740 mhassanin 2024-09-05T07:20:47Z