https://live.paloaltonetworks.com/t5/general-topics/renewing-certificate-for-gui-from-external-ca/m-p/471940#M103159 <P>correct, this ended up being my issue. I forgot to circle back around to update.</P> Thu, 10 Mar 2022 12:39:30 GMT clewis1 2022-03-10T12:39:30Z https://live.paloaltonetworks.com/t5/general-topics/renewing-certificate-for-gui-from-external-ca/m-p/471437#M103095 <P>We have followed the below document. After importing the newly signed certificate into the firewall it does not replace the pending csr containing the private key. PAN OS 9.1.11-h3, any one else experience this issue?</P><H1><A href="https://docs.paloaltonetworks.com/pan-os/9-1/pan-os-admin/certificate-management/obtain-certificates/obtain-a-certificate-from-an-external-ca.html" target="_blank">Obtain a Certificate from an External CA (paloaltonetworks.com)</A></H1><P>&nbsp;</P><P>&nbsp;</P> Tue, 08 Mar 2022 18:04:33 GMT https://live.paloaltonetworks.com/t5/general-topics/renewing-certificate-for-gui-from-external-ca/m-p/471437#M103095 clewis1 2022-03-08T18:04:33Z https://live.paloaltonetworks.com/t5/general-topics/renewing-certificate-for-gui-from-external-ca/m-p/471928#M103156 <P>make sure you put the exact same name as the CSR into the name of the certificate file you are importing, that will 'complete' the certificate</P> Thu, 10 Mar 2022 12:33:54 GMT https://live.paloaltonetworks.com/t5/general-topics/renewing-certificate-for-gui-from-external-ca/m-p/471928#M103156 reaper 2022-03-10T12:33:54Z https://live.paloaltonetworks.com/t5/general-topics/renewing-certificate-for-gui-from-external-ca/m-p/471940#M103159 <P>correct, this ended up being my issue. I forgot to circle back around to update.</P> Thu, 10 Mar 2022 12:39:30 GMT https://live.paloaltonetworks.com/t5/general-topics/renewing-certificate-for-gui-from-external-ca/m-p/471940#M103159 clewis1 2022-03-10T12:39:30Z