Automation / API

Automation and Orchestration Tools and Technologies

When configuring and managing the Palo Alto Networks Next-Generation firewall for scale and agility, it’s nice to have a collection of tools to automate activities and events. Our Automation and Orchestration tools and technologies provide a collection of open, extensible projects that help you take the next step. Learn about these tools with detailed documents and join in the discussions with other users to get the most from these resources.

Automation Projects

Available Automation Tools

Ansible

Automation for Everyone. Ansible is designed around the way people work and the way people work together. Learn more

Device Framework Device Framework

Device Framework enables non-programmers to create sophisticated automations that leverage the PAN-OS API. Learn more

Terraform Terraform

Terraform enables teams to automate deployment and adapt to the changing needs of cloud infrastructures. Learn more

Automation Blog

Terraform Provider Version 1.5.0 Released

post time: Feb 4, 2019 5:02:29 PM

The 1.5.0 release contains support for BGP, BFD profiles, an enhanced NAT rule resource, and various user requested enhancements.

Ansible v2.0.0 (Katana) released

post time: Sep 27, 2018 4:50:49 PM

Version 2.0.0 of Palo Alto Network Modules has been released. This is major release that includes expanded support for Panorama and Next Generation Firewall including very much awaited support for idempotency.

 

The updated documentation can be found here:
http://paloaltonetworks.github.io/ansible-pan/

Terraform Provider Version 1.4.0 Released

post time: Aug 27, 2018 3:03:05 PM

The 1.4.0 release includes expanded support for Panorama (such as ethernet interfaces, templates, and template variables), IPSec tunnels, IKE gateways, firewall licensing, and much more.

Terraform Deployment and Configuration Templates facilitating CI/CD workflows for security teams

post time: Jun 28, 2018 2:55:58 PM

Application developers working in agile teams have the need to push and deploy code numerous times a day. The agility of the dev teams puts a lot of pressure on the infrastructure and security teams to keep pace. Consequently, quite often this results in security teams slowing down the deployment of apps into production environments.

 

However, Palo Alto Networks has built out a slew of automation capabilities that provide security teams with the capabilities and tools to demonstrate the same agility as the app teams.  These capabilities enable enterprises as a whole to succeed by deploying the line of business application in a timely and more importantly, a secure manner.

 

The following sections describe:

  • How app teams and security teams can leverage code repositories such as github to store both application artifacts and security policies as code.
  • How security teams can leverage ```Terraform``` and the Palo Alto Networks ```Terraform provider``` to leverage CI / CD workflows to keep pace with line of business requirements.

Terraform Provider Version 1.2.0 Released

post time: Jun 19, 2018 2:09:47 PM

The 1.2.0 release includes support for security policy groups, PAN-OS 8.1's FQDN destination address translations, and telemetry sharing with Palo Alto Networks.

Discussions

Have questions about automation APIs? Join the Live Community to post your questions and get answers.
Author Topic Views Replies
posted: 9 hours ago updated: 8 hours ago

API to create Address Group

I am trying to create a new address group using API but I always end up getting <response status="error" code="12"><msg><...

18 3
posted: 2 weeks ago updated: 2 weeks ago

Setting up PAN OS for API access

I am trying to enable XML API to my Palo Alto v8.1 firewall. Despite documented steps, it doesnt seem to work. How do I verify if the XML API is setup...

32 3
posted: 2 weeks ago updated: 2 weeks ago

Adding a new firewall to existing log collector group via API

Does any one know if there is an XML API call to add a new firewall to an existing Log Collector group, without needing to specify all the existing me...

23 4
posted: 2 weeks ago updated: 2 weeks ago

vmware / terraform bootstrap?

Hello, what would be an example workflow for deploying and bootstraping a vm-series on esxi? I can deploy a template using terraform, and I configure ...

16 0
posted: 2 weeks ago updated: 10 hours ago

Ansible Panos_security_rule "find" option isn't working?

Hi All, I am testing all PaloAlto's Ansible modules here and I'm keep getting the following error when using "operation: find"Here is my playbook...

36 5