This website uses cookies essential to its operation, for analytics, and for personalized content. By continuing to browse this site, you acknowledge the use of cookies.
For details on cookie usage on our site, read our Privacy Policy
Accept
Reject

Panorama Commit issue 10.1.4-H4 after upgrade from 10.1.3

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Panorama Commit issue 10.1.4-H4 after upgrade from 10.1.3

Go to solution
paragkarki143
L3 Networker

‎04-25-2022 07:05 PM - edited ‎04-26-2022 04:28 PM

Hi guys,

I have a Panorama- 10.1.4-H4 (upgraded from 10.1.3) on AWS and two other firewalls both at 10.0.9 on AWS.

After upgrading, Panorama, I cannot just commit. Throws an error saying  plugins unexpected here (for schema verification failed-reverted the config and when trying to commit after that gives the plugin error)

paragkarki143_0-1650938630275.png

 

I see below difference in the candidate and running configs when validating (after reverting the config):

paragkarki143_1-1650938630280.png

 

paragkarki143_2-1650938630293.png

 

paragkarki143_3-1650938630268.png

 

paragkarki143_4-1650938630278.png

 

I do not see any bugs or any one else facing similar issue.

It looks like a corrupt candidate configuration. But I am afraid if I force commit/force commit it will affect the prod environment specially as it says in the validation process the plugins will be deleted.

Plugin for Panorama: 3.0.2

Plugin for Firewalls: 2.14

@

@ 

@reaper 

Many Thanks,

0 Likes Likes
1 ACCEPTED SOLUTION

Accepted Solutions

Go to solution
paragkarki143
L3 Networker

‎04-28-2022 10:52 PM

Loading running-config and Force Committing just resolved the issue

View solution in original post

1 person found this solution to be helpful.
0 Likes Likes
7 REPLIES 7

Go to solution
paragkarki143
L3 Networker

‎04-26-2022 06:15 PM

Hi Guys, 
Any chances you might be knowing the ans?
@BPry 
@SteveCantwell 

0 Likes Likes

Go to solution
SteveCantwell
Cyber Elite
Cyber Elite

‎04-27-2022 07:16 AM

Howdy

I would think that if your company is not using plugins (please confirm) that you could delete the plugin(s) that are causing your issue.

 

Help the community: Like helpful comments and mark solutions
0 Likes Likes

Go to solution
paragkarki143
L3 Networker
In response to SteveCantwell

‎04-27-2022 06:56 PM

Hey @SteveCantwell,

Thanks for the reply. Unfortunately, the deployment is in AWS and the plugins are required. What may be the effect if I force commit (As I really think it's a case of a corrupt xml conf file  )? 

0 Likes Likes

Go to solution
SteveCantwell
Cyber Elite
Cyber Elite

‎04-28-2022 07:49 AM

If you try a commit force and the running config is corrupted, you will still probably get an error and the commit will not be successful.

If you want, export your configuration off, and password protect it.  Attach to this thread and then PM directly with the password, then I will download it and try on my Panorama and see if I can figure it out. 😛  Always glad to assist the Community.

Help the community: Like helpful comments and mark solutions
0 Likes Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Copyright 2007 - 2023 - Palo Alto Networks