Management traffic must be allowed to reach certificate.paloaltonetworks.com via the paloalto-shared-services application. Troubleshooting and Resolution Steps 1. Basic Connectivity and MTU Checks
Before moving to advanced hardware fixes, ensure the device can actually reach the Palo Alto servers. Management traffic must be allowed to reach certificate
If a device is replaced via RMA, the new hardware has a different TPM (Trusted Platform Module) chip with unique keys that may not yet be synced with the serial number in the Palo Alto Customer Support Portal . If a device is replaced via RMA, the
set deviceconfig system setting management-interface-mtu 1374 Use code with caution. 4. Contacting Support for Root Access
If the error persists, try clearing the local telemetry cache and forcing a refresh: Run the following commands in the CLI:
Perform a to ensure all configuration elements are re-synchronized. 4. Contacting Support for Root Access