Device certificate fails to renew with the error - Failed to renew device certificate. Failed to send request to CSP server.

Device certificate fails to renew with the error - Failed to renew device certificate. Failed to send request to CSP server.

28589
Created On 12/28/22 23:43 PM - Last Modified 09/04/23 07:22 AM


Symptom


This article explains the steps to perform when an automatic device certificate renewal fails with the following error 

Error: Failed to renew device certificate. Failed to send request to CSP server. OpenSSL SSL_connect: SSL_ERROR_SYSCALL in connection to certificatetrusted.paloaltonetworks.com:443

Environment


PAN-OS 9.1 or later 

Cause


Error in connection to the certificate server

Resolution


Running the following command via CLI will fix the issue 

> request certificate fetch 

You can verify using the following command 

> show device-certificate status
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000kFvKCAU&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language