Palo Alto Networks Knowledgebase: Palo Alto Networks Supported SSL/TLS Version and Cipher Suites for Web UI

Palo Alto Networks Supported SSL/TLS Version and Cipher Suites for Web UI

298108
Created On 02/07/19 23:59 PM - Last Updated 02/08/19 00:00 AM
Device Management Initial Configuration Installation QoS Zone and DoS Protection
Resolution

A newer list of supported cipher suites is available here : PAN-OS 7.1 Supported ciphers

 

Details

Protocol version SSL 3.0/TLS 1.0 is currently supported for management access.

To log into the Palo Alto Networks firewall, the browser must be TLS 1.0 or version compatible.

 

The following are cipher suites for admin sessions (web interface):

DHE-RSA-AES256-SHA

RSA-AES256-SHA

DHE-RSA-CAMELLIA256-SHA

RSA-CAMELLIA256-SHA

EDH-RSA-3DES-SHA

RSA-3DES-SHA (aka RSA-DES-CBC3-SHA aka DES-CBC3-SHA)

DHE-RSA-AES128-SHA

RSA-AES128-SHA

DHE-RSA-SEED-SHA

RSA-SEED-SHA

DHE-RSA-CAMELLIA128-SHA

CAMELLIA128-SHA

RSA-RC4-SHA

RSA-RC4-MD5

 

Note: SSL V3 option has been removed from the PAN OS 6.0.8 and 6.1.2 onward.

 

owner:sgantait



Attachments
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClZsCAK&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Attachments
Choose Language