Automation and Orchestration Tools and Technologies

When configuring and managing the Palo Alto Networks Next-Generation firewall for scale and agility, it’s nice to have a collection of tools to automate activities and events. Our Automation and Orchestration tools and technologies provide a collection of open, extensible projects that help you take the next step. Learn about these tools with detailed documents and join in the discussions with other users to get the most from these resources.

Automation Projects

Available Automation Tools


Automation for Everyone. Ansible is designed around the way people work and the way people work together. Learn more

Device Framework Device Framework

Device Framework enables non-programmers to create sophisticated automations that leverage the PAN-OS API. Learn more

Terraform Terraform

Terraform enables teams to automate deployment and adapt to the changing needs of cloud infrastructures. Learn more

Automation Blog

Terraform Templates for Cloud-Deployed Palo Alto Network Next Generation Firewalls

post time: Aug 7, 2017 1:21:31 PM

Templates for Terraform provide the ability to quickly and easily deploy and secure critical applications on the Palo Alto Networks Next Generation firewall for public cloud environments such as AWS and Azure. The Palo Alto Networks Live Community provides a central place to learn how to utilize this technology, get help from others using it, and more.

Using Ansible For Firewall SEC Policy Change Management Process

post time: Jul 24, 2017 11:29:13 AM

Manage security policy changes using the power of the Palo Alto Networks custom Ansible modules and Ansible ‘pull’ feature.



Using Ansible to Automate & Accelerate AWS Deployments

post time: Jul 24, 2017 11:20:15 AM

This video shows how to use Ansible to automate and accelerate AWS deployments.


Palo Alto Networks Device Framework

post time: Jun 8, 2017 2:03:55 PM

The Palo Alto Networks Device Framework is a powerful tool, offered as a python library, to create automations and interactions with PAN-OS devices including Next-generation Firewalls and Panorama.

Ansible and Palo Alto Networks Firewall

post time: Apr 3, 2017 2:38:27 PM

The combination of Ansible and Palo Alto Networks modules address the most common applications of automation and orchestration of the Palo Alto Networks VM-Series NGFW (Next Generation Firewall) for both public and private cloud deployments.


Have questions about automation APIs? Join the Live Community to post your questions and get answers.
Author Topic Views Replies
posted: Thursday updated: Thursday

What does 'start-at' do in 'show session all filter start-at' do?

the allowed values from the context help is:  <value>  <1-2097152> Show next 1K sessions Can't find refreneces to this...

2 0
posted: Wednesday updated: Wednesday

Query api with user reader

Hi, I have created some curl plugins to access via xml api to our Pa-500 and make queries. For that right now I use the admin user to get the id: http...

6 0
posted: Tuesday updated: Tuesday

Dynamic Tags via XML API with CIDR Range

 So the problem I'm running into is that its simple to interact with the XML API, but its not always so easy to figure out where the commands are...

10 1
posted: 2 weeks ago updated: Friday

Security Rule API

I've got a powershell script working that copies my security rules from one device to another but I need to control the order that they are inserted a...

44 4
posted: 4 weeks ago updated: 4 weeks ago

example for address object ip-netmask edit

I would like to edit an existing address object, just changing it's ip-netmask attribute. However, using the supplied examples I can't seem to get a v...

19 1