How to check HIP cert from the client.

How to check HIP cert from the client.

1184
Created On 04/15/21 17:41 PM - Last Modified 09/10/25 17:45 PM


Objective


This article is about hip profile certificate check using self signed cert.

Environment


Any Pan-os 

Procedure


HiP checking cert from the clinet.
we did add the certificate profile with that certificate
Generated Self-Signed Certificates
http://HiP checking cert from the clinet. we did add the certificate profile with that certificate Generated Self-Signed Certificates



Configured Global protect 
https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClFbCAK
User-added image

we created a server cert with subalt name =server
Exported the server cert as Encrypted Private Key and Certificate (PKCS12)
User-added image

under Network > Globalprotect > Portals > <portal name> Agent > Configs > Hip Data Collection > Certificate Profile for HIP processing 
User-added image

Imported to 
⦁    Local computer >personal >Certeficate 
⦁    Current user >personal >Certeficate 
User-added image

HIP-Object 
User-added image

https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm5WCAS



and were able to see the cert Now
User-added image

User-added image
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000sY2xCAE&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language