FYI: Panorama Certificate Expiration! June 16, 2017
byjdelio04-10-201702:23 PM - edited 05-11-201707:36 AM
We interrupt this normally scheduled Discussion of the Week to bring you an important message.
Just in case you have not seen the "Customer Notice" at the top of the screen, I wanted to bring your attention to the fact that the certificate that Panorama uses to communicate to PAN-OS devices and to Log Collectors is going to be expiring on June 16, 2017.
When the certificate expires, PAN-OS devices will loose communication to Panorama, there will be no management of devices from Panorama, pushing of configuration from Panorama or log collection to the Panorama infrastructure.
Good news, we have a solution in place to prevent this from being a real problem. It does not require you to upgrade to a different version of PAN-OS, but it does require you to install a newer version of Panorama 6.1, 7.0 and 7.1.
If you are already on Panorama 8.0, PAN-OS 8.0, using WF-500 or M-500 hardware in PAN-DB mode, then you do not have to do anything, as these are not affected by this.
To read the full details, including an FAQ about this, please visit the link below.