Error seen while renewing the certificate 'Failed to write issuer certificate components to disk'

Error seen while renewing the certificate 'Failed to write issuer certificate components to disk'

36267
Created On 05/16/20 11:55 AM - Last Modified 05/17/20 04:17 AM


Symptom


The following error is seen while renewing a certificate on the firewall : "Failed to write issuer certificate components to disk"

User-added image

Environment


Any Palo alto Networks platform 

Cause


  • The issue seen is when the certificate being renewed is not locally generated self signed certificate rather a certificate that has been signed from a third party.
 
  • A certificate signed by a third party cannot be renewed on the firewall on its own  and need a new request to be generated and sent to the third party for signing. This is like generating a new Certificate Signing request.

Resolution


  • Generate a new Certificate Signing request, See the details here
  • To replace the existing Certificate, same parameters can be used in the request with a different certificate name.
  • Once the certificate is successfully imported, replace the certificate in the SSL/TLS profile, as required.
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g0000008U5QCAU&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail