Error message: "Server error : Could not execute rename command"

Error message: "Server error : Could not execute rename command"

15954
Created On 06/19/20 06:17 AM - Last Modified 10/07/20 21:50 PM


Symptom


When trying to replace a failed managed Firewall with a new Firewall on a Panorama, swapping out the new serial number with the old serial number will result in the following error. 
Panorama> replace device old xxxx01028296 new xxxx01163918
Server error : Could not execute rename command

 

Environment


  • PAN-OS 8.1, 9.0 and 9.1
  • Any Panorama 

Cause


The issue is seen when the serial number of the new Firewall being replaced already exists in the Panorama database.

Example:
  • Serial number xxxx01163918 is a PA-220 which is replacing the failed PA-220 with serial number xxxx01028296.
  • The Serial number of the new Firewall is being shown as connected under GUI: Panorama > Managed Devices > Summary.
  • This confirms that the serial number is already in the database of Panorama. 


 

Resolution


To fix this, the newly added serial number needs to be deleted from the database before re-adding.
Only then, can a new serial number can be swapped with the old serial number.
Refer to the CLI commands below. 
Panorama# delete mgt-config devices xxxx01163918  => FW with new serial number deleted before re-adding
Panorama# commit
Panorama# exit
Panorama> replace device old xxxx01028296 new xxxx01163918 => Replacement command works fine without error

 

Additional Information


To verify if the firewall with any serial is removed, one can use the following command. 
Panorama# show | match xxxx01028296
Panorama>


 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g0000008UUzCAM&lang=en_US%E2%80%A9&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language