This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

About Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

Discussions

Start a conversation

Resolved! Automating upgrade from PAN-DB license to advanced URL licensing

Hello, In a previous post in the LiveCommunity forums ( PAN DB vs Advanced ) @SeanDeHarris advised how he manually solved an issue with updating URL Filtering from PAN-DB to Advanced URL filtering usin the article LICENSE ERRORS WHEN MIGRATING FROM PAN-DB URL4 TO ADVANCED URL FILTERING : Here's the steps taken to fixed the PAN-DB lic issue in P...

Kobiher by L2 Linker
  • 3626 Views
  • 1 replies
  • 0 Likes

LetsEncrypt integration

Hi, While I know most would use an issued SSL certificate it would be great if PANOS supported LetsEncrypt for requesting SSL certificates for things like the management interface and GlobalProtect.

Support for Palo Alto Networks Ansible collection

What is the proper way to request support for the Palo Alto Networks Ansible collection? There is a bug which makes adding rules to Panorama V10 with connected firewalls on below V10 not work. I submitted a bug on github, but there is no reaction.

Anon1 by L4 Transporter
  • 3032 Views
  • 1 replies
  • 1 Likes

Get a full list of security rules with IPS Profiles

I am trying to create a playbook that will go through a devices active policy and for any Allow rule list out the IPS profile defined for that rule. Currently I have not been able to get my playbook to provide the output of the rules so I can filter, so I know I must be doing something wrong. Here is the playbook that I am currently using: tas...

Cacti - Templates

Hello Palo Alto Community,I created a few Cacti Templates which allow you to quickly and easily monitor Palo Alto Networks firewalls with SNMP. There are 5 different templates corresponding to the 5 different Firewall families, PA-200, PA-500, PA-20xx, PA-40xx, PA-50xx.Using these with Cacti (www.cacti.net), these Host templates will monitor th...

kklein by L2 Linker
  • 93215 Views
  • 39 replies
  • 18 Likes

xpath tags

Trying to get some info from the XML API in the form of panxapi. I'm not sure this even works based on previous forum post by others but this is the closest I could find and it's based on the description having the term Donkey. xpath="/config/devices/entry[@name='localhost.localdomain']/device-group/pre-rulebase/security/rules/entry[descriptio...

How to use Prisma API call to get special resource names list?

Hi Team, I want to use API call to list a required resources, for e.g: I want to list all my AWS EKS services->EKS resource names, includ: Resource Name, Account ID, Account Name, Resource ID, Region ID, Region. I know this can be done while Prisma console, but it only list max 100 a page, I have 200k resources, so I want to use API to g...

EnidZ by L0 Member
  • 2383 Views
  • 1 replies
  • 0 Likes

Parameter for panos_facts

Hello, The module documentation for panos_facts says the gather_subset parameter should be a list with values from all, system, session, interfaces, ha, routing, vr, vsys and config, But when I run a playbook with gather_subset: ['vr'] I get "msg": "Subset must be one of [config, system, ha], got vr". I'm running the panos colletion 2.9.0. W...

Intermittent 403 - Failed Connection Errors in Ansible Playbook

I have an ansible playbook that creates address,service objects -> security policy -> Commit and push to different device groups. Randomly one of the task fails during executing with the error - Failed Connection: URL Error: code: 403 reason: Forbidden. This is not specific to any particular module and have seen it happening in panos_addre...

Siddhant_0-1617387452800.png
Siddhant by L0 Member
  • 6758 Views
  • 3 replies
  • 0 Likes

Resolved! Get Push To Device summary via API

Hi, I am trying to automate the push to device proccess through Panorama, I know that the xml API call for tat is commit all, but I was trying to find an API call that would shouw the device groups and templates that will be pushed (trying to get the values that appear in the dialog labeled "Push To Device" when you press on push to device in th...

Content Installation failing due to pending downloading job

Hi Team, I have created a script to automate some configuration with bash, its failing to install contents as downloading job not finished yet, what command can be used to wait until job finish? request content upgrade checkrequest content upgrade download sync-to-peer no force yes latestrequest content upgrade install commit yes sync-to-peer no...

Srikant by L1 Bithead
  • 4382 Views
  • 3 replies
  • 1 Likes

Using PAN-OS SDK against configuration file

Can you help me with an idea of how I can use the SDK on a Panorama configuration file, rather than connecting to the Panorama API.It will be used for running reports on configuration elements (understandably not for configuration changes) in an restricted environment where API calls from a host to Panorama are not allowed. I see that the frame...

batd2 by L4 Transporter
  • 1607 Views
  • 0 replies
  • 0 Likes

commit and push changes made by automation job (Panorama, Terraform)

Hello Guys, I'm dealing with automation project where saome sec. policies must be applied through Panorama. I'm using Terraform provider which does not support commit.My idea was to commit and push changes made by specific admin account used for automation. (this is what can be manually done form Panorama GUI by using: "Commit and Push" + select...

DawidZ by L0 Member
  • 4047 Views
  • 3 replies
  • 0 Likes

Resolved! bgpimportprofile/bgpexportprofile panos python module

Has anyone tried setting up a bgp import/export profile using the panos library?I created the configuration tree as expected, added bgp to the virtual router and created the bgppeer and bgp peer group objects as well.bgp_export_rule = panos.network.BgpPolicyExportRule(name="test-export-5",enable=True,used_by=["testbgpgroup"],action="deny") bgp_e...

  • 1031 Posts
  • 68 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks