https://live.paloaltonetworks.com/t5/general-topics/basic-setup-pan8-0-minemeld-issues/m-p/249153#M97154 <P>Hi&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/98042">@dpocoroba</a>,</P> <P>the GoDaddy certificate is useful only if your MineMeld has a certificate signed by GoDaddy.&nbsp;In that specific article, the GoDaddy certificate is used because the Autofocus/MineMeld certificate is signed by GoDaddy. On private instance this could not apply.</P> <P>&nbsp;</P> <P>Did you configure PAN-OS with a certificate profile? If you disable the certificate profile is the connection successful?</P> <P>Be aware that to properly test the connectivity to an EDL you should configure the EDL, use it in a policy in the firewall and commit. Please don't trust the "Test URL" button on the EDL config dialog.</P> Thu, 07 Feb 2019 08:06:56 GMT lmori 2019-02-07T08:06:56Z https://live.paloaltonetworks.com/t5/general-topics/basic-setup-pan8-0-minemeld-issues/m-p/248626#M97153 <P>Hello All,</P> <P>&nbsp;</P> <P>Having a problem getting a basic setup running feel I am missing something simple.</P> <P>&nbsp;</P> <P>- Fresh install of MM on AWS. Built using Ubuntu and the</P> <P>following link:</P> <P><A href="https://live.paloaltonetworks.com/t5/MineMeld-Articles/Manually-install-MineMeld-on-Ubuntu-Server-14-04/ta-p/98454" target="_blank">https://live.paloaltonetworks.com/t5/MineMeld-Articles/Manually-install-MineMeld-on-Ubuntu-Server-14-04/ta-p/98454</A></P> <P>&nbsp;</P> <P>-Everything worked fine</P> <P>-Installed the O365 lists as this is what I am trying to feed into PAN</P> <P>&nbsp;</P> <P>Followed this link:</P> <P><A href="https://live.paloaltonetworks.com/t5/MineMeld-Articles/How-to-Safely-Enable-access-to-Office-365-using-MineMeld-Updated/ta-p/224148" target="_blank">https://live.paloaltonetworks.com/t5/MineMeld-Articles/How-to-Safely-Enable-access-to-Office-365-using-MineMeld-Updated/ta-p/224148</A></P> <P>&nbsp;</P> <P>Was able to see the lists, miners and feeds no problem.&nbsp;</P> <P>&nbsp;</P> <P>I installed the GoDaddy root cert as outlined in</P> <P><A href="https://live.paloaltonetworks.com/t5/MineMeld-Articles/Connecting-PAN-OS-to-MineMeld-using-External-Dynamic-Lists/ta-p/190414" target="_blank">https://live.paloaltonetworks.com/t5/MineMeld-Articles/Connecting-PAN-OS-to-MineMeld-using-External-Dynamic-Lists/ta-p/190414</A> Step 2</P> <P>&nbsp;</P> <P>The issue I am having is getting the EDL to poll from the feed</P> <P>I can CURL the list from my PC but have to use the " -k " option to ignore the certificate error</P> <P>&nbsp;</P> <P>Tried following to install a new cert on MM</P> <P>following this link:</P> <P><A href="https://gist.github.com/jtschichold/f0977e5c1ec09b3ec7d66bf80687d9da&nbsp;" target="_blank">https://gist.github.com/jtschichold/f0977e5c1ec09b3ec7d66bf80687d9da&nbsp;</A></P> <P>Then exporting the CA.crt into a pem file and importing it into the PAN</P> <P>&nbsp;</P> <P>No matter what I do on the PAN I cant get the EDL to actually load and import the IP's. I am sure its related to the certs causing the issue.&nbsp;</P> <P>&nbsp;</P> <P>Any help is appreciated&nbsp;</P> <P>&nbsp;</P> <P>-DP</P> Sun, 03 Feb 2019 01:40:02 GMT https://live.paloaltonetworks.com/t5/general-topics/basic-setup-pan8-0-minemeld-issues/m-p/248626#M97153 dpocoroba 2019-02-03T01:40:02Z https://live.paloaltonetworks.com/t5/general-topics/basic-setup-pan8-0-minemeld-issues/m-p/249153#M97154 <P>Hi&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/98042">@dpocoroba</a>,</P> <P>the GoDaddy certificate is useful only if your MineMeld has a certificate signed by GoDaddy.&nbsp;In that specific article, the GoDaddy certificate is used because the Autofocus/MineMeld certificate is signed by GoDaddy. On private instance this could not apply.</P> <P>&nbsp;</P> <P>Did you configure PAN-OS with a certificate profile? If you disable the certificate profile is the connection successful?</P> <P>Be aware that to properly test the connectivity to an EDL you should configure the EDL, use it in a policy in the firewall and commit. Please don't trust the "Test URL" button on the EDL config dialog.</P> Thu, 07 Feb 2019 08:06:56 GMT https://live.paloaltonetworks.com/t5/general-topics/basic-setup-pan8-0-minemeld-issues/m-p/249153#M97154 lmori 2019-02-07T08:06:56Z