This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

About Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

Discussions

Start a conversation

Resolved! API-KEY after 9.0. Will it work on all firewalls after the "API Key Lifetime" option is added in 9.0?

Hello to All, I found strange thing that because of the API Key Lifetime option when generating an api key on different firewalls even when using the same credentials (username and password) and the firewall master key is not configured or the same on the firewalls, the api key is now different on the firewalls and this was not the case in 8.1 a...

Cortex XDR API Limit

I'm trying to retrieve incidents on the Cortex XDR API but, after a few tests I'm getting 401 Unauthorized errors on the same key it worked a few requests before. Is there any "request limit" on API keys or accounts? Regards

Issue in Facing Interface Status through Palo Alto API

Hi All, I am facing issue in getting ethernet interface status through XML . Please help me with the API Call I am using below one and it is not working . I am using below syntax to check all interface details:- Like Status , IP .<show><interface></interface></show>

Resolved! Trying to turn of Preemption via Ansible Playbook failure

I am working on an ansible playbook for upgrading our Palo Alto Firewall, and one of the requirements that we have is that I have to disable Preemption. I have not been able to find any examples of this so I have been working on creating my own task to add to the excellent examples that have been provided (https://github.com/PaloAltoNetworks/an...

Automatic palo alto management tasks using ansible

Hi All I'm new to ansible and would like to start using it to automate management tasks on Palo alto firewalls. We have a number of firewalls already in production managed by a panorama server. Is it possible to start using playbooks to manage the existing configuration or we have to convert the configuration to ansible code first? Would someone...

OSPF ansible configuration

Hi Cheers,Using ansible-galaxy collection paloaltonetworks.panos:2.9.0 to provision paloalto and configure panorama, we want to add a new feature as to configure ospf within the VR.I don't find any module in the collection regarding ospf configuration (there are although for BGP)So i don't even know how to create Areas, Auth Profiles within the ...

szajac by L0 Member
  • 2473 Views
  • 1 replies
  • 0 Likes

Resolved! Automating certificate import into Panorama (not a template)

I have importing a certificate into a template working:curl -s -i -k -F -F "file=@{{cert_path}}" -X POST "https://panorama/?key={{api_key}}&type=import&category=keypair&certificate-name=letsencrypt_cert&format=pkcs12&passphrase={{password}}&target-tpl=CORE-SBO_ECS" I assumed that importing the certificate into Panorama is...

using syslog to integrate Ruckus ZoneDirector & PAN for user identification

I am trying to integrate Ruckus ZoneDirector & PAN for user identification by using syslog. However, syslog message generated by Ruckus ZoneDirector doesn't have user's IP address. It only contains user name and MAC address of the device as shown below.<134>Sep 20 12:16:34 syslog: eventd_to_syslog():User[GUEST@8c:70:5a:4e:a2:8c] joins ...

carsent by L1 Bithead
  • 5833 Views
  • 4 replies
  • 0 Likes

PANOS Provider crashing if EDLs are used

Hi 🙂 We are using Terraform and using the PANOS Provider 1.10.0 but since we're using EDLs the provider crashes with the following... If I remove EDLs are try do a terraform plan then it succeeds, is someone able to assist? Stack trace from the terraform-provider-panos_v1.10.0 plugin: panic: runtime error: index out of range [2] with length 2...

PANOS Terraform Provider - Features?

Hi, I am looking to automate the GlobalProtect configuration on a PANOS via the Terraform PANOS provider. Currently I do not see the ability to do this, can you advise when you will be introducing the functionality Is there an update schedule for this provider as it seems to be updated randomly and I don't see any update for the past 2 mon...

Integrating XSOAR with Panorama, Checkpoint Smart Log, Fortinent and Cisco firewalls for running automated searches in logs

Hello, Has anyone tried integrating Palo Alto XSOAR or leveraged any other API integration with any of the following next-gen firewalls: Checkpoint Smart Log, Fortinet, and Cisco firewalls for running automated searches in logs? I will appreciate the help.

JideAj by L1 Bithead
  • 3516 Views
  • 2 replies
  • 0 Likes

Panos_Security_Rule - "msg": "dictionary requested, could not parse JSON or key=value"

Hi, if some one can advise or help, why I am getting this error within Ansible I am creating a load of hosts from a csv, creating a object group and then creating a security rule that references that newly created object group as a source Error is "msg": "dictionary requested, could not parse JSON or key=value" Below is my code Host creation : ...

How are you using automation for your Firewalls???

Today, we are doing every change manually through Panorama and pushing out to Firewalls. We currently only have 2 sets of Physical HA Pairs. At the end of the day the approved changes are manually entered and submitted. For example, say we had to add a new address object to an existing rule. How is it more efficient to use Ansible to do this...

RyanBess by L2 Linker
  • 4714 Views
  • 3 replies
  • 0 Likes
  • 1031 Posts
  • 68 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks