Palo Alto Networks recommends that you enable
authentication for the servers that host the external dynamic lists
configured on your firewall. However, if you
Find
External Dynamic Lists That Failed Authentication and prefer
to disable server authentication for those lists, you can do so
through the CLI. The procedure below only applies to external dynamic
lists secured with SSL (i.e., lists with an HTTPS URL); the firewall
does not enforce server authentication on lists with an HTTP URL.
Disabling server authentication for an external
dynamic list also disables client authentication. With client authentication
disabled, the firewall will not be able to connect to an external
dynamic list that requires a username and password for access.