Newly deployed PA-VM on Azure went into maintenance mode caused by mgmtsrvr

Newly deployed PA-VM on Azure went into maintenance mode caused by mgmtsrvr

3757
Created On 04/22/22 08:54 AM - Last Modified 10/09/24 20:29 PM


Symptom


  • New deployment of VM-series firewall from Azure marketplace
  • Upon provisioning, the firewall keeps on rebooting and it ends into Maintenance Mode
  • Entry Reason: System start failed multiple times. Caused by service: mgmtsrvr
Maintenance Mode Entry Reason
 

Environment


  • VM-series firewall on Azure
  • Supported PAN-OS

Cause


  • The password given was too long, i.e. exceeding limit of 31 characters.
  • Errors related to password is displayed in logs
  • On the Maintenance Mode, go to Log Files, then select MP Pan Logs. Navigate to ms.log.
  • Observe message similar to "passwd and public key not found"
Error: pan_cfg_set_default_config(pan_cfg_bootstrap_mgr.c:3135): initcfg: username fwadmin passwd and public key not found in bootstrap cfg
Error: pan_cfg_mgr_construct)int(pan_cfg_mgr.c:33561): Unable to construct candidate config
Error: pan_mgmtsrvr_construct_new(server_thread.c:1030): MGMTSRV: failed to initialize cfg engine
Error: runserver(tcpserver.c:238): mgmtsvr: server constructor failed
Note: Azure webform does not limit password input length.

Resolution


Redeploy new VM-series firewall and provide password limiting to 31 characters or below.

Additional Information


Username and Password Requirements
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000oNfqCAE&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language