05-31-2022 03:38 AM
I am trying to secure the NTP on a customer Palo device (pa-220 currently running 9.0.12 and is being upgraded to 10.x.x in a week or so). It current has options for auto-key and symmetrical key for authentication. But from further reading auto-key is not secure (testing it to some public NTP servers like time@cloudflare show no sync) and I haven't found a public NTP server that will run symmetric keys. As I understand it both are being replaced with NTS. Is NTS available on Palo devices, or is my only option using symmetrical keys on a private NTP server?
07-07-2022 06:22 AM
Hi @LeviMolloy ,
Unfortunately at this point your only options are autokey and symmetric key. Current versions (up to 10.2) are not supporting NTS
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!