This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Anydesk issue.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Anydesk issue.

AzerbaijanSupermarkets
L2 Linker

‎02-04-2018 10:43 PM

Hi everyone!
I have some issues with anydesk application. It has ssl issue because of decryption, I think.

I've added *.anydesk.com ind 'SSL decryption exclusion', but it didn't worked.

Maybe some of you have faced such kind of issue?

Thanks in advance!

anydesk.jpg

10 people had this problem.
43 REPLIES 43

CosminM
L4 Transporter
In response to cverniani

‎10-04-2022 01:38 AM

Hi @cverniani ,

All the pictures from my reply are screen snip from my PA config.

Can you be more specific about what screenshot are you referring?

 

Cheers,
Cosmin

Don't forget to Like items if a post is helpful to you!
Please help out other users and “Accept as Solution” if a post helps solve your problem!

Read more about how and why to accept solutions.

Disclaimer: All messages are my personal ones and do not represent my company's view in any way.
0 Likes Likes

FarkhanAliyev
L1 Bithead
In response to dcaporetto

‎05-08-2023 04:22 AM

It seems to work fine. Tested it in my environment on PAN-OS 10.2.4 and it works.

 

Thanks!

0 Likes Likes

S.Support212931
L1 Bithead

‎04-09-2024 05:35 AM

this has stopped working once the anynet rootCA cert expired on the 7th of april , we urgently need the updated ROOT CA cert.

please someone post it.

VTQNetwork
L2 Linker

‎04-09-2024 08:08 AM

I'm on the same boat - CA certificate posted here expired and anydesk does not work anymore.

I've extracted Any Net Relay certificate with Wireshark and was I able to find some with SSLlabs (after few attempts it has finally connetced).

Unfortunately it's only Any Net Relay certificate (not CA), issued by AnyNet Root CA 2.

As it's not CA, it cannot be configured as "Trust Root CA"in Palo.

 

Any ideas how to find AnyNet Root CA 2?

 

 

S.Support212931
L1 Bithead
In response to VTQNetwork

‎04-09-2024 09:07 AM

ye bro were all having the same issue, anydesk support , palo alto support , noone is able to track the info to get the actual AnyNet Root CA 2 cert we need to upload to palo alto for the root ca option to be enabled. just a waiting game now.

CosminM
L4 Transporter

‎04-09-2024 09:56 AM

Hello,

 

Since I wasn't able to capture the actual AnyNet Root CA 2, I just modify my decryption profile as follows:

Untitled.png

 

All the rest remain as described on my comments (see on second page).

 

Cheers,
Cosmin

Don't forget to Like items if a post is helpful to you!
Please help out other users and “Accept as Solution” if a post helps solve your problem!

Read more about how and why to accept solutions.

Disclaimer: All messages are my personal ones and do not represent my company's view in any way.

CHARRIER
L2 Linker

‎04-11-2024 01:36 AM

Hi,

I follow your instructions :

 

CHARRIER_0-1712823640002.png

 

This method works periodictly, sometimes when we launch anydesk, we can connect but sometimes not.

We have to force the reconnexion :

CHARRIER_1-1712824099345.png

And after that, the anydesk client test some relay, and finally make the connexion, but this can make some times, as he find the good relay.

 

In the traffic log i can see some deny with decrypt-error.

in the decryption log the root status is "untrusted" and i have this error : 'Received fatal alert UnknownCA from client'

Does this solution work every time for you?

 

0 Likes Likes

CosminM
L4 Transporter
In response to CHARRIER

‎04-11-2024 04:50 AM - edited ‎04-11-2024 04:51 AM

Hi,

 

Mine it's working all the time, but I forgot to update also the Custom URL on the post. I did it just now.

You need to have on the Custom URL also:

*.net.anydesk.com/

 

Cheers,
Cosmin

Don't forget to Like items if a post is helpful to you!
Please help out other users and “Accept as Solution” if a post helps solve your problem!

Read more about how and why to accept solutions.

Disclaimer: All messages are my personal ones and do not represent my company's view in any way.
0 Likes Likes

ateshasan
L0 Member
In response to CosminM

‎05-06-2024 06:47 AM

this certifcate is revoked, still can we use ?

0 Likes Likes

CosminM
L4 Transporter

‎05-06-2024 09:22 AM

Hello @ateshasan ,

What certificate was revoked?

Cheers,
Cosmin

Don't forget to Like items if a post is helpful to you!
Please help out other users and “Accept as Solution” if a post helps solve your problem!

Read more about how and why to accept solutions.

Disclaimer: All messages are my personal ones and do not represent my company's view in any way.
0 Likes Likes

ateshasan
L0 Member
In response to CosminM

‎05-06-2024 11:43 PM

In fact, you know that AnyDesk was recently hacked and after this hack, philandro Software GmbH changed its certificates to AnyDesk Software GmbH.

https://support.anydesk.com/knowledge/how-do-i-make-sure-i-use-anydesk-with-the-new-certificate

 

 

I solved the problem with dynamic ip address group. 

In the decryption logs, I do not decrypt to those with Subject Common Name AnyNet Relay.

 

ateshasan_0-1715064124683.png

 

ateshasan_1-1715064146908.png

 

ateshasan_2-1715064159728.png

 

 

0 Likes Likes

msyeedrafiqi
L2 Linker

‎05-07-2024 12:58 AM

I had the same issue, you can create a no decrypt policy for it and it should work.

https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/decryption/decryption-concepts/no-decrypti...

Zain
0 Likes Likes

LCMember40912
L2 Linker
In response to CosminM

‎08-14-2024 11:48 AM

How was the Anynet Root CA 2 cert obtained Cosmin? I tried  dcaporetto's method, but the Root CA 2 cert is no longer present on one of the relays, so it could not be downloaded?

0 Likes Likes

CosminM
L4 Transporter

‎08-15-2024 10:28 AM - edited ‎08-15-2024 10:46 AM

Hello @LCMember40912 ,

 

The actual Anynet Root CA 2 I have it from another post of @S-Battermann (https://live.paloaltonetworks.com/t5/general-topics/solution-for-quot-ssl-decryption-bypass-for-anyd... ) .

 

You can download directly the archive from my post.

Cheers,
Cosmin

Don't forget to Like items if a post is helpful to you!
Please help out other users and “Accept as Solution” if a post helps solve your problem!

Read more about how and why to accept solutions.

Disclaimer: All messages are my personal ones and do not represent my company's view in any way.
0 Likes Likes
  • 41128 Views
  • 43 replies
  • 1 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks