To ensure secure communication with the PAN-OS firewall, it's crucial to verify the SSL certificate presented by the server. By default, the script verifies SSL certificates to prevent man-in-the-middle attacks.
53
-
Disabling SSL certificate verification (verify=False) is strongly discouraged.
52
+
The script will automatically ask for the file path of the SSL certificate from the PAN-OS firewall server. If no path is given, the script will automatically set SSL verification to false, effectively disabling SSL.
54
53
55
-
Provide Root CA Certificate:
56
-
If you have the root CA certificate of the PAN-OS firewall server, you can specify its path using the verify parameter in the script (line 18).
54
+
If you have the root CA certificate of the PAN-OS firewall server, you can manually specify its path using the verify parameter in the script (line 18).