Other than password based authentication, you can use certificate to authenticate admin user to Paloalto admin GUI. Here is how to enable certificate based authentication. Please be advised, after enabling certificate authentication you CANNOT authenticate with password to web GUI anymore. 01. Import root CAa) Navigate to Device>Certificate Management>Certificates>Importb) Give the root ca a name… Continue reading Enable certificate authentication on Paloalto Firewall
Category: Paloalto
Install certificate on Paloalto Firewall for admin GUI https
01. Import your certificate to Paloalto Firewall. You can use either pfx(certificate and key in single file) format or pem(certificate and key in 2 different file) format. Option1(pfx format)Navigate to Device>Certificate Management>Certificates>Import Option2(pem format)*Paloalto only accept encrypted pem keyNavigate to Device>Certificate Management>Certificates>Import 02. Confirm the certificate has been imported successfully and the key column has… Continue reading Install certificate on Paloalto Firewall for admin GUI https
Paloalto firewall ssh authentication with public key
It’s common that administrator login to ssh server with key to avoid typing password all day. This post demonstrates how to config Paloalto firewall to use ssh key authentication. 01. Go to Device>Administrators, select the user name you want to add ssh key authentication. 02. Check “Use Public Key Authentication(SSH)” 03. Import your ssh public… Continue reading Paloalto firewall ssh authentication with public key
Factory Reset Palo Alto Firewall without admin password
This post demonstrate how to perform factory reset if you don’t have admin password. For this to work, you need a console connection to firewall. 01. Reboot firewall by unplug the power cable and then plug it back in. 02. From console output, select “PANOS (main-sysroot1)”. Please noted, this selection only show up around 5… Continue reading Factory Reset Palo Alto Firewall without admin password