Failed to send telemetry data with error: CDL Receiver Key Empty

• Failed to send telemetry data with error: CDL Receiver Key Empty.
• From device_telemetry_curl.log, the response is empty:

  2023-05-18 20:44:11,445 dt INFO S1: CDL: RSP KEY RESPONSE: []

• Palo Alto Networks firewalls.
• All PAN-OS versions.

Allow TCP ports and FQDNs required for Cortex data lake (CDL) to successfully send telemetry data to AIOps for NGFWs.

Required FQDNS:

• *.prod.di.paloaltonetworks.cloud
• *.paloaltonetworks.com
• *.prod.di.paloaltonetworks.com
• *.prod.reporting.paloaltonetworks.com
• *.receiver.telemetry.paloaltonetworks.com
• lic.lc.prod.us.cs.paloaltonetworks.com (if US based)
• br-prd1.us.cdl.paloaltonetworks.com (if US based)
• api.paloaltonetworks.com
• apitrusted.paloaltonetworks.com
• http://crl.paloaltonetworks.com  (TCP 80)
• http://ocsp.godaddy.com  (TCP 80)
• https://storage.googleapis.com
• 34.90.244.133
• 35.184.125.116

Required TCP ports:

• TCP 444 and TCP 3978 (not necessary if you are using only device telemetry and do not have a Strata Logging Service license). 
• For OCSP, you must also allow the firewalls to access ocsp.paloaltonetworks.com on port 80.
• On firewalls running PAN-OS 9.1.7 or earlier, you also need a Security policy rule that allows SSL over port 444 to lic.lc.prod.us.cs.paloaltonetworks.com.
• TCP 443, TCP 5222-5224, TCP 5228 and TCP 5229 (palo alto device-telemetry and google-base APP-IDS).

• Domains Required for AIOps for NGFW: https://docs.paloaltonetworks.com/aiops/aiops-for-ngfw/get-started-with-aiops/fqdns
• TCP Ports and FQDNs Required for Cortex Data Lake: https://docs.paloaltonetworks.com/cortex/cortex-data-lake/cortex-data-lake-getting-started/get-started-with-cortex-data-lake/ports-and-fqdns