| 1.2.4 Ensure valid certificate is set for browser-based administrator interface - Authentication Profile | IDENTIFICATION AND AUTHENTICATION |
| 1.2.4 Ensure valid certificate is set for browser-based administrator interface - Certificate Profiles | SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.2.4 Ensure valid certificate is set for browser-based administrator interface - Certificates | SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.6.3 Ensure that the certificate securing Remote Access VPNs is valid - Certificates | SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.6.3 Ensure that the certificate securing Remote Access VPNs is valid - GlobalProtect Gateways | SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.6.3 Ensure that the certificate securing Remote Access VPNs is valid - GlobalProtect Portals | SYSTEM AND COMMUNICATIONS PROTECTION |
| 2.1 Ensure that IP addresses are mapped to usernames - User ID Agents | IDENTIFICATION AND AUTHENTICATION |
| 2.1 Ensure that IP addresses are mapped to usernames - Zones | CONFIGURATION MANAGEMENT |
| 2.2 Ensure that WMI probing is disabled | CONFIGURATION MANAGEMENT |
| 6.17 Ensure that a Zone Protection Profile with Flood Protection settings enabled for all flood types is attached to all untrusted zones | SYSTEM AND COMMUNICATIONS PROTECTION |
| 7.3 Ensure 'Security Policy' denying any/all traffic exists at the bottom of the security policies ruleset | SYSTEM AND COMMUNICATIONS PROTECTION |
| 8.3 Ensure that the Certificate used for Decryption is Trusted | SYSTEM AND COMMUNICATIONS PROTECTION |
| Palo Alto software version 7 not found. | |
