Palo Alto Networks has published a notice describing further actions regarding internal certificate management.
This is an additional notification to the messages already sent directly to firewall systems via broadcast in November.
The notice includes several time dependencies that are spread throughout 2024.
The first critical point is reached on April 7, 2024, and affects users of the Panorama Management System, including the firewall systems managed through it.
For standalone systems, action is required by November 18, 2024, at the latest.
User-ID and Terminal Agents are also affected and must be updated by November 18, 2024.
The required measures essentially consist of:
Software updates for Panorama and NGFW
Setting up device certificates
Software updates for User-ID and Terminal Agents
The original notice can be read via the following link:
Generally, we recommend our customers perform regular software updates.
If you need support with this or have questions about the current publication, please contact us.
Additionally, we would like to take this opportunity to explicitly point out the end-of-life date for PAN-OS Release 9.1.
This is set for March 31, 2024, and we strongly recommend switching to PAN-OS 10.1 or higher.
