Enhanced Security Measures in Place: To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.
02-28-2024 01:50 PM
Hello team:
From your support; by browser I get the following warnings "NET::ERR_CERT_COMMON_NAME_INVALID" subsequently ERR_SSL_KEY_USAGE_INCOMPATIBLE, this validating in chrome and microsoft edge. Consequently I do not login to the portal, but it is working, GP agents connect without problem.
The SSL/TLS profile, Min version "tlsv.1".o and max version "Max" protocols.
Greetings.
#NGFW
02-28-2024 01:53 PM
Hello @manuellara - you need a new certificate with a CN matching the host name of your firewall, and as TLSv1 has been deprecated you should use TLSv1.2 minimum.
02-29-2024 02:38 AM
Please also refer artical ( https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClFoCAK ) although it is for the GP,, but it gives good idea about recommendation for certificate.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
