Modify the PAN-OS Web Server Timeout

The PAN-OS web server timeout must be the same as or greater than the timeout in any authentication server profile multiplied by the number of retries and the number of servers in that profile.
Do not change the PAN-OS web server timeout unless you see authentication failures. Setting the timeout too high could degrade the performance of the firewall or cause it to drop authentication requests. You can review authentication failures in Authentication logs.
  1. Access the firewall CLI.
  2. Set the PAN-OS web server timeout by entering the following commands, where
    <value>
    is the number of seconds (default is 30; range is 3 to 125).
    >
    configure
    #
    set deviceconfig setting l3-service timeout
    <value>
    #
    commit

Related Documentation