Commit failed due to Validation error: "target -> devices is invalid" in security rule
10574
Created On 06/07/23 05:50 AM - Last Modified 07/14/23 01:39 AM
Symptom
- After a managed firewall is deleted from Panorama, a local commit on Panorama fails with validation error. For ex:
Validation Error:
shared -> pre-rulebase -> security -> rules -> Share-security-rule-1 -> target -> devices -> 016401004783 '016401004783' is not a valid reference
shared -> pre-rulebase -> security -> rules -> Share-security-rule-1 -> target -> devices is invalid
Environment
- Panorama
Cause
- Device is still referenced in the security rule configuration. This is not visible on the GUI.
Resolution
Delete references from CLI.
Steps:
- Find the configuration in which device serial number is referred. For ex,
admin@Panorama> set cli config-output-format set
admin@Panorama> configure
Entering configuration mode
[edit]
admin@Panorama# show | match 016401004783
set shared pre-rulebase security rules Share-security-rule-1 target devices 016401004783
[edit]
- Delete the references followed by commit:
admin@Lab81-44-Panorama# delete shared pre-rulebase security rules Share-security-rule-1 target devices 016401004783
[edit]
admin@Lab81-44-Panorama# commit
Commit job 2824 is in progress. Use Ctrl+C to return to command prompt
..18%25%39%47%99%...........100%
Configuration committed successfully
[edit]