I couldnt figure out where the duplication in the configuration was, so I accessed the Embedded Boot Menu, and restored device to factory defaults.
Whilst it did resolve the issue, it also reverted the licences to 30 day evaluation.
When it had a support agreement I could re-activate it but alas it is not commercially viable to do that again for this device, of for the people I am giving it to.
I have access to another 600 device, (also now redundant and out of support contract), that is running firmware R77.20.80 but with firewall; Identity Awareness; IPSec and advanced networking blades set to expiration:Never.
I understand the licenses for these blades are perpetually licensed when the hardware is purchased.
As the normal activation route is not possible because it is not under support, is there a way to clone the licence from one to the other, or indeed just clone the NAND memory blocks from one to the other?