Extend the life time of the Master Key after expiration.
Each firewall and Panorama management server
has a default master key that encrypts all private keys and passwords.
To more closely control your private key and password encryption,
you can create your own master key (
Master Key and Diagnostics
and configure the lifetime of the key.
In PAN-OS 9.0 you
can configure the master key to automatically renew the configured
master key for a specified number of days after the lifetime of
the master key expires. The Temporary Master Key Expiration Extension
allows you to extend the lifetime of the master key if you cannot
update it across all managed devices and the Panorama management
server at the time of expiration.