Enhanced Security Measures in Place: To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.
06-07-2017 09:55 AM
Hey all!
I have a problem with my second passive PA-3020. (7.1.7)
We had a loss of power so the firewall was shutdown hard.
When it's booting now, the autocommit fails.
When I do a commit force, it says: "Threat database handler failed".
Then I stumbled over this link: https://live.paloaltonetworks.com/t5/Featured-Articles/Threat-Database-Handler-Commit-Error/ta-p/120...
When I do the request anti-virus upgrade install file, it says: "Server error : Failed to schedule an install job".
Can someone help me?
Thanks!
06-07-2017 02:42 PM
Hi,
A couple of quick questions:
- Have you tried rebooting the firewall?
- Have you tried manually uploading the database?
- What other things have you tried?
You might need to do a factory reset to get this fixed.
06-07-2017 02:44 PM - edited 06-07-2017 02:45 PM
Have you tried to download latest database from support portal, uploaded it manually and tried to install then?
Edit: @TranceforLife was faster 🙂
06-07-2017 02:48 PM
😄
p.s We had exactly the same case with TAC.
06-07-2017 11:20 PM - edited 06-07-2017 11:21 PM
Yeah I rebooted the firewall, but still the same.
And I tried to manually install the antivirus:
"Server error : Failed to schedule an install job".
06-07-2017 11:43 PM - edited 06-08-2017 03:53 AM
You might need to reset the firewall to its default. At least this is what we were doing. Not the best solution but might be the only one way to bring the device back online.
06-08-2017 12:19 AM
and then restore the config or will there be the same problem?
06-08-2017 12:54 AM
Yes, just restore the confirm. This issue is not a configuration issue.
06-08-2017 03:50 AM - edited 06-08-2017 03:51 AM
Hi @MPI-AE,
The Threat database handler is a 'known' commit failure.
In most cases a corrupt AV signature database or Content database will cause these type of auto commit failures. AV update process or Content update process might have been terminated abruptly without any indication to the user leaving the AV signature database corrupt or Content database corrupt.
Usually a manual Anti-Virus install from the CLI will serve as a workaround for this issue. Download the Anti-Virus file manually from https://support.paloaltonetworks.com and upload the same to the firewall. After the upload, use the following command to do the manual AV install from the CLI.
> request anti-virus upgrade install file
If the manual install workaround fails for some reason, then another workaround for this issue is described below:
Hope it helps !
-Kiwi.
06-08-2017 04:37 AM
Hey kiwi,
yeah that's it!
I had to contact TAC because I tried everything.
There were corrupted content files.
So TAC removed these files with root.
And then we were able to do the commit.
01-30-2023 07:09 AM
Hi @MPI-AE
Did you fix it? If so , do you remember what was the solution ? 🙂
09-17-2023 03:21 AM
Hi there! Im facing the same issue here with a PA440 version 10.2.4
This failure, according to what I have been seeing in different forums. It is caused by Dynamic updates - AutoCommit fails - commit force fails. When I do the request anti-virus upgrade install file, it says: "Server error : Failed to schedule an install job". Also I realice that I lost the eth.Ports on the FW.
I have tried to apply the solution that @kiwi said, but without much luck, maybe I did something wrong.
Anyone that face the same issue that can help? or a guideline much more easy to understand?
Regards!
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
