Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.
Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.
Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.
Hi Team, Want to disable automated commit recovery, Is there any CLI command to disable it? Appreciate your help.
Describe the bugTrying to configure active-passive HA for NGFW-VM on AWS, but got error "ha1-backup unexpected here"Expected behaviorThe VM series NGFW on AWS is special tailored, according to the admin guide 'https://docs.paloaltonetworks.com/vm-series/10-0/vm-series-deployment/set-up-the-vm-series-firewall-on-aws/high-availability-for-vm-serie...
Hello. In the Palo Alto GUI you have the option of global find on an object and get a list of all references where said object is used.I would like to automate removal of object and references when a server get decommissioned, and thought of this function.Using panorama and ansible you would have various device groups to pull and iterate throug...
Is there a way to split a large output feed into smaller feeds.
Trying to use ansible setup HA pair in the AWS same availability zone. But got error: "IndexError: list index out of range", any suggestions please? The github issue report on HA looks no one response for a long time... Big Thanks. The NGFW-VM documentation over GUI, it demands to use management port for the HA1. The Playbook:##############---- ...
Hello Community!I'm trying to deploy a Site-to-Site connection between NGFW and Azure Virtual WAN using the automation tool written by vinayvenkat (links below). When running the script as instructed, it errors out while creating IKE Gateway: DEBUG2:pan.xapi:method: POST Traceback (most recent call last): File "panw_ipsec.py", line 482, in <...
All Dll added in system 32 but a Error is coming "The application was unable to start correctly (0xc000007b)." every time.
We need to dynamically update the GP gateway exclude access routes and exclude domains. Trying to find the XPATH for the list members. Below is what I have but I can't get to the actual items in the lists. /config/devices/entry[@name='localhost.localdomain']/template/entry[@name='TEMPLATE']/config/devices/entry[@name='localhost.localdomain']/v...
We send IP to userid mapping data to Palo Alto via the XML api. We've had success with PAN-OS 5.0. However, with Palo Alto 8(8.1.0) we recieve "Delete mapping failed" messages when we attempt to notify Palo Alto an user has left the network (logout). Is there a new requirement or configuration on Palo Alto 8 or is there something wrong in ...
Hello,I've been trying to find a way to programmatically access the HIP check reports that are surfaced in the UI under Monitor > HIP Match > (Magnifying Glass Icon). It's an incredibly handy report whose data I'd like to be able to incorporate into different tools, but I've not been able to find the right API call magic to make it work. T...
HiI'm using using ansible collections "paloaltonetworks.panos" and ended up with the below error.TASK [retireve api-key]fatal: [192.168.0.120]: FAILED! => {"changed": false, "msg": "Missing required library \"pandevice\"."} I'm still wonder why its pointing to pandevice when I already installed pan-os-python. I thought pandevice is only for r...
I am working with ansible 2.9.6 on Ubuntu 20.04 and the PAN-OS Ansible Collection loaded via ansible-galaxy collection install . . . and as nearly as I can tell that version is 2.5. I have play books that call panos_security_rule, panos_nat_rule, and panos_commit_push. These -- and panos_address_object -- are all located in "~/.ansible/collectio...
Hello, I am attempting to add an address object using the API via PowerShell. I am able to logon, get the key, and pull down the current list of shared objects. When I attempt to add one, I receive a 400 error. Here is my script. If you are able to help I would appreciate it. #Step 1 | set the environment up so that it will ignore the cert erro...
Hi,I'm trying to automate proccess of VPN creation through REST API. I already have working IKE Crypto Profile creation with POST " /restapi/v10.0/Network/IKECryptoNetworkProfiles", but I can't find in documentation any reference to IPSec Crypto Profile. "/restapi/v10.0/Network/IPSecCryptoNetworkProfiles" doesn't works. Any ideas?
Greetings, I use Template Stacks with variables a lot for firewalls with the same hardware and network settings.To assign the value of a variable, I go to the template stack and export the variable CSV file. I modify the file with the values for my firewall and import the CSV file.This is all good, but I would like to automate this via API.Via t...
