CIS Palo Alto Firewall 11 v1.1.0 L2

This audit file has been deprecated and will be removed in a future update.

Name: CIS Palo Alto Firewall 11 v1.1.0 L2

Updated: 12/22/2025

Authority: CIS

Plugin: Palo_Alto

Revision: 1.2

Estimated Item Count: 11

Filename: CIS_Palo_Alto_Firewall_11_Benchmark_v1.1.0_L2.audit

Size: 106 kB

MD5: abb8f268bbd8171be9b6134399378907

SHA256: 54d94c140b4900b65a5f7c0624f832266d37e5f6545d1c9db63e2dd7da4414bf


Revision 1.2 Dec 22, 2025 Miscellaneous Audit deprecated. Metadata updated. References updated.
Revision 1.1 Nov 8, 2024 Functional Update 1.1.1.2 SNMPv3 traps should be configured 1.2.5 Ensure valid certificate is set for browser-based administrator interface 1.6.3 Ensure that the Certificate Securing Remote Access VPNs is Valid 1.7.1 Enabling Post-Quantum (PQ) on IKEv2 VPNs 2.1 Ensure that IP addresses are mapped to usernames 2.2 Ensure that WMI probing is disabled 5.7 Choosing Wildfire public cloud region 6.16 Ensure that a Zone Protection Profile with tuned Flood Protection settings enabled for all flood types is attached to all untrusted zones 7.1 Ensure application security policies exist when allowing traffic from an untrusted zone to a more trusted zone 8.3 Ensure that the Certificate used for Decryption is Trusted Miscellaneous References updated. Variables updated.

CIS Palo Alto Firewall 11 v1.1.0 L2 Download File