CLI listing of all Security Policies

Reply
Not applicable

CLI listing of all Security Policies

We are trying to reduce our unused Security Policies.  We created a custom report to show Security policies run in the past 30 days.

I would like a listing of all Security Policies and then remove the Policies that have not been run in 30 days.  I am trying to figure a CLI command to list all security Policies.  The custom report only shows policies executed, not policies that have not run(as expected)  Thanks in advance 

L3 Networker

Re: CLI listing of all Security Policies

Try "show running security-policy".

L6 Presenter

Re: CLI listing of all Security Policies

Hello Jshivly,

Try following command, it will display all policy in running configuration. It display used and unused policy.

admin@21-PA-2020> show running security-policy

For more information on unused policy refer following document. Let me know if that helps.

How to Identify Unused Policies on a Palo Alto Networks Device

Regards,

Hardik Shah

Not applicable

Re: CLI listing of all Security Policies

Thanks for the answer and the link.........much appreciated.

Highlighted
L6 Presenter

Re: CLI listing of all Security Policies

Hi Jshively,

Feel free to ask me additional queries.

Regards,

Hardik Shah

Not applicable

Re: CLI listing of all Security Policies

got it and thanks for the reply, much appreciated....

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!