Ansible - Automating NGFW Configuration

About Ansible Automation

Ansible is a very powerful open source automation language, it uses modules to communicate with vendor specific devices. What makes Ansible unique from other management tools is that it is also a deployment and orchestration tool. In many respects, Ansible helps provide large productivity gains to a wide variety of automation challenges. The Palo Alto Networks Ansible integration project utilizes Ansible to help organizations automate configuration and management of the Palo Alto Networks Platform. The Live Community provides a central place to learn how to utilize this technology, get help from others using it, and more.

Ansible Updates & Tips

Webinar - Automate Cloud Security with Ansible

post time: Mar 16, 2018 10:07:39 AM

Webinar Apr 25th at 2:00 pm EDT


Palo Alto Networks has developed an Ansible module to enable these organizations to integrate security into their CI/CD pipeline. See it in action and learn how Ansible and Palo Alto Networks help enforce a consistent next-generation security posture across your organization.

View the recording:

Using Ansible For Firewall SEC Policy Change Management Process

post time: Jul 24, 2017 11:29:13 AM

Manage security policy changes using the power of the Palo Alto Networks custom Ansible modules and Ansible ‘pull’ feature.



Using Ansible to Automate & Accelerate AWS Deployments

post time: Jul 24, 2017 11:20:15 AM

This video shows how to use Ansible to automate and accelerate AWS deployments.


Ansible and Palo Alto Networks Firewall

post time: Apr 3, 2017 2:38:27 PM

The combination of Ansible and Palo Alto Networks modules address the most common applications of automation and orchestration of the Palo Alto Networks VM-Series NGFW (Next Generation Firewall) for both public and private cloud deployments.



Have questions about how to utilize Ansible to automate your Palo Alto Networks deployments? Join the Live Community to post your questions and get answers.
Author Topic Views Replies
posted: yesterday updated: yesterday

Export Panorama config-bundle using the API.

Hello. I apologize if this question is already answered. Is it possible to export the config-bundle using the XML API?I can only download the Pan...

7 0
posted: a week ago updated: Tuesday

PA - can we have an honest discussion about Ansible and PA?

First of all - thanks for the API - it's mostly great. But, let's talk about Ansible and PA.  Some of our folks went to Ansible Fest and tal...

79 8
posted: 3 weeks ago updated: 3 weeks ago

Why can my API call show GlobalProtect users but cannot disconnect them?

Help Needed! I've been having this issue for a while now. I have a ticket open; yet, I am not able to get this API call to disconnect the connected GP...

17 1
posted: 3 weeks ago updated: 3 weeks ago

Automatic download of updates

My Palo Alto is not connected to the internet. When I need to update it I must manually download the updates from a browser, copy them to my PA, then ...

24 2
posted: Sep 14, 2018 1:20:44 PM updated: 2 weeks ago

Lets Encrypt

Hi,Our customer is implementing the Lets Encrypt ( in the whole his infrastructure. This way, every certificates SSL exp...

37 1

Related Topics

Palo Alto Networks Delivers

Ansible Community Ansible Community

Automation for Everyone. Ansible is designed around the way people work and the way people work together. Learn more

Ansible Documentation Palo Alto Networks Ansible doc's Ansible Docs on GitHub

Read the latest reference documentation for the Palo Alto Networks Ansible project on Github. Learn more