Home
EN
Location
Documentation Home
Palo Alto Networks
Support
Live Community
Knowledge Base
>
Clear
Inspect SSL/TLS Handshakes (PAN-OS & Panorama)
Updated on
Fri Sep 06 04:18:09 UTC 2024
Focus
Download PDF
Updated on
Fri Sep 06 04:18:09 UTC 2024
Focus
Home
Advanced URL Filtering
URL Filtering Features
Inspect SSL/TLS Handshakes
Inspect SSL/TLS Handshakes (PAN-OS & Panorama)
Download PDF
Advanced URL Filtering
Inspect SSL/TLS Handshakes (PAN-OS & Panorama)
Table of Contents
Filter
Expand All
|
Collapse All
Advanced URL Filtering
Administration
Inspect SSL/TLS Handshakes (
PAN-OS
&
Panorama
)
Select
Device > Licenses
to confirm that you have an active Advanced URL Filtering or legacy URL Filtering license.
Verify that you decrypt SSL/TLS traffic through either
SSL Forward Proxy
or
SSL Inbound Inspection
.
Enable inspection of SSL/TLS handshakes by CTD. By default, the option is disabled.
Select
Device
Setup
Session
Decryption Settings
SSL Decryption Settings
.
Select
Send handshake messages to CTD for inspection
.
Alternatively, you can use the
set deviceconfig setting ssl-decrypt scan-handshake
<yes|no>
CLI command.
Click
OK
.
Commit
your configuration changes.