Error message: "Warning-Missing HA peer serial number"

Error message: "Warning-Missing HA peer serial number"

12224
Created On 08/28/21 01:21 AM - Last Modified 03/12/22 05:05 AM


Symptom


After upgrade to Panorama in HA to PAN-OS 10.0 release, the following warning message appears on the active Panorama device. 
"Warning-Missing HA peer serial number"

 

Environment


  • Any  Panorama.
  • High-Availability(HA) configured.
  • PAN-OS 10.0 and above.

Cause


New feature introduced in PAN-OS 10 requires the Peer HA serial number to be entered when HA is configured on Panorama. Refer to Changes To the Default Behavior.

 

Resolution


  1. Enter the Panorama HA peer serial number to reduce your attack surface against brute force attacks on the Panorama IP as documented in Step 2.4.
  2. Commit the configuration.

Note: This is optional. Although the warning message is seen, the commit process is not blocked.
  • You can either ignore the message or add the serial numbers in the High Availability section to stop receiving the warning. Here is how you add the serial number.
GUI: Panorama > High-Availability > Setup, then add peer serial number for both Panorama devices.

User-added image

 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u0000004LiNCAU&lang=en_US%E2%80%A9&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language