On the NGFW, how can you generate and block a private key from export and thus harden your security posture and prevent rogue administrators or other bad actors from misusing keys?
On the NGFW, how can you generate and block a private key from export and thus harden your security posture and prevent rogue administrators or other bad actors from misusing keys?
To generate a certificate and block the private key from export, navigate to Device > Certificate Management > Certificates > Device Certificates. Then, generate the certificate and select the Block Private Key Export option before finalizing the generation of the new certificate. This procedure ensures that the private key cannot be exported, thereby enhancing the security of your network by preventing unauthorized use of the keys.
C Available answers have typos and it should be Select Device > Certificate Management > Certificates > Device Certificates https://docs.paloaltonetworks.com/pan-os/10-2/pan-os-admin/decryption/block-private-key-export/generate-a-private-key-and-block-it
Correct C - https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-new-features/decryption-features/block-export-of-private-keys.html
Correct "C" 1 - https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-new-features/decryption-features/block-export-of-private-keys.html 2 - https://docs.paloaltonetworks.com/pan-os/10-0/pan-os-admin/decryption/block-private-key-export
C is correct
C is correct
Messed up/redundant path but, the only possible answer is C
confirm c
C is correct