02-02-2019 05:40 PM
Hello All,
Having a problem getting a basic setup running feel I am missing something simple.
- Fresh install of MM on AWS. Built using Ubuntu and the
following link:
-Everything worked fine
-Installed the O365 lists as this is what I am trying to feed into PAN
Followed this link:
Was able to see the lists, miners and feeds no problem.
I installed the GoDaddy root cert as outlined in
The issue I am having is getting the EDL to poll from the feed
I can CURL the list from my PC but have to use the " -k " option to ignore the certificate error
Tried following to install a new cert on MM
following this link:
https://gist.github.com/jtschichold/f0977e5c1ec09b3ec7d66bf80687d9da
Then exporting the CA.crt into a pem file and importing it into the PAN
No matter what I do on the PAN I cant get the EDL to actually load and import the IP's. I am sure its related to the certs causing the issue.
Any help is appreciated
-DP
02-07-2019 12:06 AM
Hi @dpocoroba,
the GoDaddy certificate is useful only if your MineMeld has a certificate signed by GoDaddy. In that specific article, the GoDaddy certificate is used because the Autofocus/MineMeld certificate is signed by GoDaddy. On private instance this could not apply.
Did you configure PAN-OS with a certificate profile? If you disable the certificate profile is the connection successful?
Be aware that to properly test the connectivity to an EDL you should configure the EDL, use it in a policy in the firewall and commit. Please don't trust the "Test URL" button on the EDL config dialog.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
