Automation and Orchestration Tools and Technologies

When configuring and managing the Palo Alto Networks Next-Generation firewall for scale and agility, it’s nice to have a collection of tools to automate activities and events. Our Automation and Orchestration tools and technologies provide a collection of open, extensible projects that help you take the next step. Learn about these tools with detailed documents and join in the discussions with other users to get the most from these resources.

Automation Projects

Available Automation Tools


Automation for Everyone. Ansible is designed around the way people work and the way people work together. Learn more

Device Framework Device Framework

Device Framework enables non-programmers to create sophisticated automations that leverage the PAN-OS API. Learn more

Terraform Terraform

Terraform enables teams to automate deployment and adapt to the changing needs of cloud infrastructures. Learn more

Automation Blog

Terraform Templates for Cloud-Deployed Palo Alto Network Next Generation Firewalls

post time: a week ago

Templates for Terraform provide the ability to quickly and easily deploy and secure critical applications on the Palo Alto Networks Next Generation firewall for public cloud environments such as AWS and Azure. The Palo Alto Networks Live Community provides a central place to learn how to utilize this technology, get help from others using it, and more.

Using Ansible For Firewall SEC Policy Change Management Process

post time: 3 weeks ago

Manage security policy changes using the power of the Palo Alto Networks custom Ansible modules and Ansible ‘pull’ feature.



Using Ansible to Automate & Accelerate AWS Deployments

post time: 3 weeks ago

This video shows how to use Ansible to automate and accelerate AWS deployments.


Palo Alto Networks Device Framework

post time: Jun 8, 2017 2:03:55 PM

The Palo Alto Networks Device Framework is a powerful tool, offered as a python library, to create automations and interactions with PAN-OS devices including Next-generation Firewalls and Panorama.

Ansible and Palo Alto Networks Firewall

post time: Apr 3, 2017 2:38:27 PM

The combination of Ansible and Palo Alto Networks modules address the most common applications of automation and orchestration of the Palo Alto Networks VM-Series NGFW (Next Generation Firewall) for both public and private cloud deployments.


Have questions about automation APIs? Join the Live Community to post your questions and get answers.
Author Topic Views Replies
posted: Thursday updated: Thursday

API: add a managed device into panorama

Hi,I'm looking for the correct syntax to add a new managed device (serial number) into panorama, using API.I tried lots of stuffs, but without success...

33 9
posted: 2 weeks ago updated: 2 weeks ago

ansible panos_dag_tags causes Panorama to crash.

Hi PA devops! I'm trying to automate adding addresses and then adding tags to them. The first part succeeds but the second part causes Panorama to bec...

11 0
posted: 4 weeks ago updated: 4 weeks ago

User ID Count

Im using this operational command to pull out the number of mapped users by the user id:<show><user><ip-user-mapping><all><...

31 2
posted: Jul 13, 2017 12:26:13 AM updated: 3 weeks ago

XML API - Get thret ID and CVE (version 8.0)

Hello. Working with firewalls on version 7 with a query to the following path: xpath=/config/predefined/threats/vulnerability  I was able to...

54 4
posted: Jun 20, 2017 9:25:41 PM updated: Jun 21, 2017 11:32:46 PM

Commit and push in Panorama 8.0.3

Is there an API command to do a commit and push in Panorama in 8.0.3? I can only find a commit to panorama or a commit to template. The issue is that ...

68 1