Palo Alto Failed To Fetch Device Certificate Tpm Public Key Match Failed Updated ((hot)) -

These steps require console access or a maintenance window. Some steps will reboot the firewall.

: A known bug ( PAN-313623 ) causes temporary files to fill the disk partition in the SSL directory on TPM-supported firewalls. If you are on version 12.1.3–12.1.6, a reboot is often required to clear these files before a fetch will work. When to Contact Support (TAC) These steps require console access or a maintenance window

This issue, characterized by the error "Failed to fetch device certificate. TPM public key match failed" If you are on version 12

. This prevents the firewall from establishing a "Device Certificate," which is required for features like IoT Security, Cortex Data Lake, and Advanced Threat Prevention. Palo Alto Networks LIVEcommunity Common Root Causes Hardware/TPM Desync: This prevents the firewall from establishing a "Device

Now, he had to force the device to ask Panorama for a new certificate based on the new TPM keys. > request auth-key generate

These steps require console access or a maintenance window. Some steps will reboot the firewall.

This issue, characterized by the error "Failed to fetch device certificate. TPM public key match failed"

Now, he had to force the device to ask Panorama for a new certificate based on the new TPM keys. > request auth-key generate