Can we use custom threat signature without threat prevention license?

Can we use custom threat signature without threat prevention license?

147
Created On 04/26/23 04:04 AM - Last Modified 10/21/25 03:38 AM


Question


  • Can we use custom threat signatures without a threat prevention license?

Environment


  • Palo Alto Networks Next Generation Firewall

Answer


  • Yes, we can use custom threat signatures without a threat prevention license.

 

[Example]

  • Create a custom vulnerability signature to look for dns requests to specific domains.
image.png

 

  • The commit shows no valid threat license but the custom signature triggers as configured without the threat prevention license.
image.png

 

 

Additional Information
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000g1WVCAY&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail