Focus

Modify the PAN-OS Web Server Timeout

Table of Contents

Filter

Expand All | Collapse All

Next-Generation Firewall Docs

Getting Started
Administration
Version
- Cloud Management of NGFWs
- PAN-OS 10.0 (EoL)
- PAN-OS 10.1
- PAN-OS 10.2
- PAN-OS 11.0
- PAN-OS 11.1 & Later
- PAN-OS 9.1 (EoL)
Networking
Version
- PAN-OS 10.1
- PAN-OS 10.2
- PAN-OS 11.0
- PAN-OS 11.1 & Later
Incidents & Alerts
Release Notes
Version
- Cloud Management and AIOps for NGFW
- PAN-OS 10.0 (EoL)
- PAN-OS 10.1
- PAN-OS 10.2
- PAN-OS 11.0
- PAN-OS 11.1
- PAN-OS 11.2
- PAN-OS 8.1 (EoL)
- PAN-OS 9.0 (EoL)
- PAN-OS 9.1 (EoL)

Guidelines for Setting Authentication Server Timeouts

Modify the Authentication Portal Session Timeout

Modify the PAN-OS Web Server Timeout

The PAN-OS web server timeout must be the same as or greater than the timeout in any authentication server profile multiplied by the number of retries and the number of servers in that profile.

Do not change the PAN-OS web server timeout unless you see authentication failures. Setting the timeout too high could degrade the performance of the firewall or cause it to drop authentication requests. You can review authentication failures in Authentication logs.

Access the firewall CLI.
Set the PAN-OS web server timeout by entering the following commands, where <value> is the number of seconds (default is 30; range is 3 to 125).
```
> configure  
# set deviceconfig setting l3-service timeout <value>  
# commit
```

Guidelines for Setting Authentication Server Timeouts

Modify the Authentication Portal Session Timeout

Next-Generation Firewall Docs

Modify the PAN-OS Web Server Timeout

Next-Generation Firewall Docs

Modify the PAN-OS Web Server Timeout

Activation & Onboarding

Next-Generation Firewalls

Cloud-Delivered Security Services

Network Security

Visibility & Monitoring

Best Practices

Experts Corner