You may want to clear this option to skip SSL verification if the device is not configured with a certificate, the certificate was not issued by a well-known certificate authority (CA) or the certificate is self-signed. ![]() ![]() Learn more Tell me about SSL Verifyīy default, the scanner will verify the SSL certificate used by the Palo Alto Networks device to make sure the certificate is valid and trusted. ![]() Also, if the vault account name for which we need to query a password is different from the username defined in the Palo Alto Networks Firewall record, then it needs to be directly entered in the Account Name field. Using BeyondTrust PBPS vault? You must directly enter the system name in the Palo Alto Networks Firewall record because auto-discovery of the system name is not supported for this authentication type. At scan time, we'll authenticate to hosts using the account name in your record and the password we find in your vault. Then choose Authentication Vault in your record and select your vault name. Just go to Scans > Authentication > Vaults and tell us about your vault system. We support integration with multiple third party password vaults. Provide basic login credentials (username and password) or get your password from a supported password vault. Go to New > Network and Security > Palo Alto Networks Firewall. We use the PAN-OS XML API to retrieve system information from Palo Alto Firewall on port 443 so this port must be open. ![]() The user account you provide for authentication must either have the predefined role "Superuser (read-only)" or a custom role with these XML API privileges enabled: Configuration and Operational Requests. Which technologies are supported?įor the most current list of supported authentication technologies and the versions that have been certified for VM and PC by record type, please refer to the following article:Īuthentication Technologies Matrix What login credentials are required? Palo Alto authentication is supported for vulnerability scans and compliance scans using Qualys apps VM, PC, SCA. Create a Palo Alto Networks Firewall record in order to authenticate to a firewall instance.
0 Comments
Leave a Reply. |