The PAN-OS web server timeout must be the
same as or greater than the timeout in any authentication server
profile multiplied by the number of retries and the number of servers
in that profile.
Do not change the
PAN-OS web server timeout unless you see authentication failures.
Setting the timeout too high could degrade the performance of the
firewall or cause it to drop authentication requests. You can review
authentication failures in Authentication logs.