Create a certificate profile for the Palo Alto Networks Next-Generation Firewall

  • Rversion finale: Australia
  • Mis à jour 12 mars 2026
  • 1 minute de lecture

    • The integration requires a certificate profile to validate and authenticate the secure connection between the ServiceNow AI Platform® server and the Palo Alto Networks Next-Generation Firewall server.

    Role required: Palo Alto Networks Next-Generation Firewall Administrator.

    A Palo Alto Networks Next-Generation Firewall authenticates to a ServiceNow AI Platform® instance, retrieves EDL entries from the database table, and incorporates the entries into corresponding firewall policy rules. This retrieval requires the API user account role in the ServiceNow AI Platform® instance, which is used by the PAN firewall admin to access the ServiceNow AI Platform® API.

    Follow the steps below on how to download DigiCertificates and configure the certificate profile.

    1. Download DigiCert or Entrust CA Gateway Certificate based on the use case. For more information, see the KB1702083 article in the Now Support Knowledge Base.
    2. Configure the certificate profile. For more information, see Palo Alto Networks documentation.