03-27-2017 04:14 AM
Hello everyone,
I created a new certificate for SSL proxy and now for some reason I cannot commit. The error I get is "error applying transform globalprotect-pre-transform.xsl to config tree", AFAIK there was/is a completely different certificate for global protect connections.
Does anyone have a clue where I should start to search for the problem?
03-27-2017 07:48 AM
Do you recieve the error if you remove the new certificate? In essence have you narrowed it down to the actual cert and not an error that actually happened with the last commit before you tried to add the new cert into the config?
03-28-2017 06:25 AM
Hi, thank you for your response.
I Rolled back to the current running configuration, and if I try to validate without any changes done I get the same error, "error applying transform globalprotect-pre-transform.xsl to config tree ( module: device)"
Additionally I get an error about certificate chain for the current ssl-proxy certificate in use, if I up the rootCA cert to the device and I get rid of this error but the first error still stands.
2 things I find kinda ridiculous about this, error when trying to commit running-configuration without any changes and how uninformative that globalprotect error is..
Though I just found out that the device has support left so I'll pass this problem to palo alto support when I have time.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
