Why anti-virus default profile is read-only?

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.
Palo Alto Networks Approved
Palo Alto Networks Approved
Community Expert Verified
Community Expert Verified

Why anti-virus default profile is read-only?

L2 Linker

Hi, Why anti-virus default profile is read-only? cannot modify the settings for default profile using superuser account. 

Anyone can please advise, thanks!

2 accepted solutions

Accepted Solutions

Cyber Elite
Cyber Elite

@herman2018 

 

All the security profiles which are default are  Predefined and are read only as it is by design.

Normally anything which is Predefined is read only and cannot be changed.

 

What you can do is clone the default security profile and modify it according to your needs.

 

Regards

MP

Help the community: Like helpful comments and mark solutions.

View solution in original post

hello herman,

if you only have the default profile for decryption what is about the next vulnerability scan will show still enable 3DES and RC4 even if you clone and disable these cyphers on the cloned profile, but STILL is enable on default profile, right? Do we have another kind of workaround for this SWEET32 vulnerability when you only have the default decryption profile? thanks

jose

Security Eng Consultant

View solution in original post

4 REPLIES 4

Cyber Elite
Cyber Elite

@herman2018 

 

All the security profiles which are default are  Predefined and are read only as it is by design.

Normally anything which is Predefined is read only and cannot be changed.

 

What you can do is clone the default security profile and modify it according to your needs.

 

Regards

MP

Help the community: Like helpful comments and mark solutions.

Thanks @MP18 ! have a good day!

hello herman,

if you only have the default profile for decryption what is about the next vulnerability scan will show still enable 3DES and RC4 even if you clone and disable these cyphers on the cloned profile, but STILL is enable on default profile, right? Do we have another kind of workaround for this SWEET32 vulnerability when you only have the default decryption profile? thanks

jose

Security Eng Consultant

L1 Bithead

Well, How do I stop AIOPS scanning the default profiles and scoring the firewalls as suboptimal? This is a pain since you cannot delete or edit the default profiles.

  • 2 accepted solutions
  • 3767 Views
  • 4 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!