Hi Guys,I would like to create objects and Rules that would be shared between the different vsys I have setup within my Firewall.I used to create "Shared" objects through the WebUI and would like to reproduce the same tasks via an ansible playbook.I ...
Hi Guys, stuck here, running the static route module and receive this error: ERROR! couldn't resolve module/action 'panos_static_route'. This often indicates a misspelling, missing collection, or incorrect module path. This should work as my other mo...
Hi All , I am trying to see if we can automate functionality to generate device health report daily using Panorama . I have checked the custom report but don't see any option for CPU/Fan/memory related report . Currently i am pulling details manually...
Dear All,I have a situation to automate PaloAlto Firewall policy requests based on user input. Once i obtain the user input in a certain format, i will have to check certain conditions before creating the rule on the firewalls.1. Whether the Objects ...
Hi all, I have just started to working on API and following documentation from this site.http://api-lab.paloaltonetworks.com/keygen.html Sent my first request to the firewall but response came as op: "URLError: code: 400 reason: Illegal parameter [re...
Hello, I've noticed that Ansible will commit changes by default, False option doesn't seem to influence it. For example, if Ansible adds security rule for 10.10.10.1 - it will not be committed.Next run, adding rule for 10.10.10.2, will commit the rul...
TASK [add a pbf rule] **************************************************************************************************************************************************************************************************************************An excepti...
we have 200+ pan devices and we recently renewed licenses and now we have to login to each device and click on "retrieve license keys from license server" so i want to automate these using API call,I looked into debug clii on, i see below request. pa...
Hello, Is there an available API call (XML or REST) or Ansible command that can be used to:1) create a user group2) add an existing user to the newly created group I looked through the API docs and Ansible collection docs, but wasn't able to find any...
I'm trying to retrieve incidents on the Cortex XDR API but, after a few tests I'm getting 401 Unauthorized errors on the same key it worked a few requests before. Is there any "request limit" on API keys or accounts? Regards
Hello, For a PAN device connected with an LDAP server - is it possible to create an address group object containing users added with "Authentication profile: LDAP", using Ansible? Thank you for your time. Best regards.
Hi all, I'm new to Ansible and am trying a specific use case where I am connecting to a PAN-OS firewall device through SSH and running my panos_op commands. Is there a way to bypass HTTPS as our production firewalls are compliant to our customers wit...
What kind of least privilege account role would be needed for dagpusher. Also can minemeld read registered IP's from a firewall and use it in dagpusher/EDL
i'm trying to run the following task in my play to create a bunch of new L3 subinterfaces on ae2 and then add them to the appropriate security zone. if i try to assign the zone as part of the panos_l3_subinterface, or through a different play (as sho...
Hi, I have been trying to use Ansible to retrieve the arp table from a PA FW. Logging in with ssh, it's a quick and easy "show arp all", but using Ansible, I am struggling. I was sure panos_op would work with "show arp all", but it doesn't.I also loo...
