We have about 10 offices, each of them has a firewall, all of them are under Panorama control. Some of these firewalls cannot register in the Cortex Data Lake, if I try to add them manually there, I see the Certificate Status "Needs certificate".
Licenses aren't expired. I tried steps from that doc:
From this solution:
When I added command: request logging-service-forwarding certificate fetch
after maybe 30 sec I checked the job (show jobs all) and this job was failed:
Based on your previous comments, you tried some good troubleshooting.
From Panorama, go to Panorama tab, device deployment, licensing , click refresh. select one of the bad firewalls and click refresh
You can also try to restart the management server using command
debug software restart process management-server
What version of pan-os?
I have a 10.0.6 version of PAN-OS on Panorama and on one of the bad firewalls (on another bad firewalls I have 9.1.3h ver.). And I have refreshed licenses from Panorama as you advised, unfortunatelly it didn't help.
About restarting the management server: you talk about Panorama or firewall?
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!