Shared Objects and Policies deleted from a device group show up in the Push Scope of Panorama

Shared Objects and Policies deleted from a device group show up in the Push Scope of Panorama

4165
Created On 12/31/22 01:12 AM - Last Modified 07/30/25 03:40 AM


Symptom


  • Shared Objects and Policies deleted from a device group still show up in the Push Scope.
  • Logs can be seen in "configd.log" (less mp-log configd.log) file.
20221108_1316_techsupport_panorama/var/log/pan/configd.log:</msg>2022-11-05 04:05:16.639 +0700 Error: pan_cfg_replaydb_update_pushed(pan_cfg_replaydb.c:3601): Unable to get minimum version!

Environment


  • Any Panorama
  • PAN-OS: 10.2.x
  • Shared Objects and Policies
  • Push Scope

Cause


Stale/Old entries are still stored in mongo database.

Resolution


  1. Login to Panorama CLI
  2. Issue the command "request clean-replay entries allto clear the replay db record.
  3. Push the configuration.

Additional Information


 The "request clean-replay entries all" command will also cause the "Commit Date" and "Object Changes" fields in the Config Audit (Panorama > Config Audit) to be cleared.

 
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000kFyOCAU&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language