GlobalProtect Clientless VPN content update schedule is not following best practices.-paloaltonetworks-panos
Vendor: paloaltonetworks
OS: panos
Description:
Indeni will alert if the update schedule for GlobalProtect Clientless VPN is not following best practices.
Remediation Steps:
Ensure update recurrence is set to “hourly” AND update action is set to “download-and-install”.
How does this work?
This alert uses the Palo Alto Networks API interface to parse through Dynamic Update schedule and alert the admin if it is following best practices.
Why is this important?
GlobalProtect Clientless VPN content update has new and updated application signatures to enable Clientless VPN access to common web applications from the GlobalProtect portal. Always ensure the action is “download-and-install” so the updates takes into effect immediately.
Without Indeni how would you find this?
Login to the device’s web interface and click on “Device” -> “Dynamic Updates”.
panos-gpclientless-update-schedule
Failed to fetch the data: https://bitbucket.org/indeni/indeni-knowledge/src/master/parsers/src/panw/panos/panos-gpclientless-update-schedule/panos-gpclientless-update-schedule.ind.yaml
PanosGpClientlessUpdateScheduleRule
Failed to fetch the data: https://bitbucket.org/indeni/indeni-knowledge/src/master/rules/templatebased/paloaltonetworks/PanosGpClientlessUpdateScheduleRule.scala