https://live.paloaltonetworks.com/t5/general-topics/certificate-expired/m-p/181804#M56087 <P>Hi&nbsp;Farzana,</P><P>&nbsp;</P><P>How/where did you get the warning messages?</P> Fri, 13 Oct 2017 17:17:02 GMT AnalysisMan 2017-10-13T17:17:02Z https://live.paloaltonetworks.com/t5/general-topics/certificate-expired/m-p/120652#M45958 <P>Hello,</P><P>&nbsp;</P><P>Received following message/alert.</P><P>Warnings</P><UL><LI>Certificate PA Net Root CA in shared expired on Jun 3 23:26:00 2016 GMT</LI><LI>Certificate GlobalProtect in shared expired on Jul 27 02:34:06 2016 GMT</LI></UL><P>Do we need to action any renewal? If so, kindly show the steps.</P><P>&nbsp;</P><P>TIA</P> Mon, 24 Oct 2016 00:42:23 GMT https://live.paloaltonetworks.com/t5/general-topics/certificate-expired/m-p/120652#M45958 Farzana 2016-10-24T00:42:23Z https://live.paloaltonetworks.com/t5/general-topics/certificate-expired/m-p/120725#M45964 <P>Hi,</P> <P>&nbsp;</P> <P>You have the renew option at the bottom of the certificates page :</P> <P>&nbsp;</P> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="certificate renew option" style="width: 593px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/6020i38BAAE08A87A5FBA/image-size/large?v=v2&amp;px=999" role="button" title="2016-10-24_11-31-55.png" alt="certificate renew option" /><span class="lia-inline-image-caption" onclick="event.preventDefault();">certificate renew option</span></span></P> <P>&nbsp;</P> <DIV class="TB_TableBody">In case a certificate expires or is about to expire, select the corresponding certificate and click <SPAN class="GUI_Screen_Text">Renew</SPAN>. Set the validity period (in days) for the certificate and click <SPAN class="GUI_Screen_Text">OK</SPAN>.</DIV> <DIV class="TB_TableBody">&nbsp;</DIV> <DIV class="TB_TableBody">If the firewall is the CA that issued the certificate, the firewall replaces it with a new certificate that has a different serial number but the same attributes as the old certificate.</DIV> <DIV class="TB_TableBody">&nbsp;</DIV> <DIV class="TB_TableBody">If an external certificate authority (CA) signed the certificate and the firewall uses the Online Certificate Status Protocol (OCSP) to verify certificate revocation status, the firewall uses the OCSP responder information to update the certificate status.</DIV> <DIV class="TB_TableBody">&nbsp;</DIV> <DIV class="TB_TableBody">-Kim.</DIV> Mon, 24 Oct 2016 09:33:02 GMT https://live.paloaltonetworks.com/t5/general-topics/certificate-expired/m-p/120725#M45964 kiwi 2016-10-24T09:33:02Z https://live.paloaltonetworks.com/t5/general-topics/certificate-expired/m-p/181804#M56087 <P>Hi&nbsp;Farzana,</P><P>&nbsp;</P><P>How/where did you get the warning messages?</P> Fri, 13 Oct 2017 17:17:02 GMT https://live.paloaltonetworks.com/t5/general-topics/certificate-expired/m-p/181804#M56087 AnalysisMan 2017-10-13T17:17:02Z https://live.paloaltonetworks.com/t5/general-topics/certificate-expired/m-p/181969#M56114 <P>I think it was when we tried to commit, the message showed up.</P> Sun, 15 Oct 2017 21:48:04 GMT https://live.paloaltonetworks.com/t5/general-topics/certificate-expired/m-p/181969#M56114 Farzana 2017-10-15T21:48:04Z