This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

About Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

Discussions

Start a conversation

Do not decrypt SSL traffic for Office 365 and ZOOM

I would like to implement the following as a rule base in PAN-OS firewall:(((create a rule for SSL Decryption, which will NOT decrypt Office 365 and ZOOM traffic)))Do we have an option to achieve this goal using API from our firewall or from ZOOM in this case?For Office 365 I guess I can do it with Minemeld and the following articlehttps://live....

IP and user TAG Mappings redistribution for DAG / DUG

Hello to All, I see a lot of questions about redistributing IP and user TAG Mappings from Panorama or a firewall to other firewalls. In version 10 this is possible but in older versions only the user id can be be redistributed and maybe a REST/XML API script is needed to take the mappings(tag and IP or user) from Panorama/Palo Alto and upload t...

Resolved! Remove Firewall from Log Collector Group and Push Changes to Collector

Hello All, I am trying to use the XML API to automate the process of removing a firewall from a log collector group, pushing changes to collector, then removing managed device from Panorama. I am curious if anyone has done something similar? Every time I run the workflow, when trying to delete firewall I get the following error, "cannot be delet...

Create shared address object

I'm using pandevice to create address object, and am able to create address object for specific device group but not a "Shared" object. pano = panorama.Panorama(device_name, login_id, pwd) panogrp = panorama.DeviceGroup('Group1')pano.add(panogrp) # Read input fileaddrObj_df = pd.read_csv(file)for index, row in addrObj_df.iterrows():passed_obj_na...

TeckSeng by L1 Bithead
  • 3633 Views
  • 2 replies
  • 0 Likes

Adding address objects to panorama in AWS using panos registry with terraform

I am trying to bulk add address objects to panorama instance in AWS using the panos for terraform and keep getting errors about the plugin. Can you use panos with terraform to push address objects via API to cloud instances or is there another way you are to do this? Or is this something that cannot be done period? initializing provider plugins....

PRTG IPsec tunnel monitor script

We are using PRTG for network monitoring and need to have alerts created and sent when an IPsec tunnel goes down. i found some article for scripts to use with the advanced script sensor, but we run into issues when actually trying to run the script. it seems to just stop the connection and Powershell ISE shows an error for the line invoking the ...

Screen Shot 2021-03-17 at 11.26.33 AM.png

Resolved! Error in simple policy creation script

Hello all; I have the following script: #!/usr/bin/python3 import panos from panos import base from panos import firewall from panos import panorama from panos import policies from panos import objects from panos import network from panos import device from panos.policies import Rulebase, SecurityRule fw = firewall.Firewall("192.168.122.5", "a...

MineMeld API integration

I have minemeld running successfully. I am looking to import a third party threat feed via API. I have tried to clone and/or new protocol with no joy. I have even created my own via CLI (doesnt work either). Documentatin is sparse on creating a new protocol, adding the node and indicators. any assistance would great.

jsamide by L2 Linker
  • 3344 Views
  • 1 replies
  • 0 Likes

Sending Logs from PA Firewall to AlienVault.

Hi All, We are running into an issue when trying to set up pulling logs from our PA firewall to AlienVault. We've followed the instructions that AlienVault provided, set up a custom role-based admin account and generated an API key from the firewall. When plugging that information into AlienVault we receive the following error: Unable to conne...

JerseyJ_0-1615302015425.png
JerseyJ by L0 Member
  • 2581 Views
  • 1 replies
  • 0 Likes

Resolved! I send a request using "set" action but in the logs is an "edit" action and it replaces the configuration

Hello,I try to add new administrators using the XML API. I send a "set" action in order to add a new admin. However it replaces the configuration and just add the new admin. I have tried POST and PUT methods. The call is:https://XXXXXX/api?type=config&action=set&key=XXXX&xpath=/config/mgt-config/users&element= <users><e...

Requesting a custom set of fields through the API

Our business currently uses the API to periodically request usage records so that we can show customers what applications they're using the most. Instead of getting all 75 fields, most of which we do not need, I'd like to just get the fields we want to store. I do know how to limit the time frame, IP address range, etc. I just want to know how t...

DanStein by L0 Member
  • 1928 Views
  • 0 replies
  • 0 Likes

Bad CSRF Token when attempting to whitelist hashes from API

Hey everyone, We are trying to whitelist a bulk of hashes using the Cortex XDR API (because the UI isn't working, we have an open case with support). The request always return the same error: 400 Bad CSRF TokenAccess is denied. This server can not verify that your cross-site request forgery token belongs to your login session. Either you suppli...

YAlhazmi_1-1611398325577.png
YAlhazmi_0-1611398274835.png
YAlhazmi_0-1611398975491.png
YAlhazmi by L1 Bithead
  • 4272 Views
  • 2 replies
  • 0 Likes

Python automate GP VPN connection

Hi everyone! I was asked to use Python to automate processes that download files from multiple servers. In order to connect to the servers, I must connect to the Global Protect VPN first. That said, in order to automate the process, I must also automate the VPN connection/disconnection. I tried to search for information about how to automate the...

A better monitoring solution

Hi folks.I've been investigating doing some proper monitoring of my PAN devices for a while - CACTI does the basics, and with some help from here I managed to make it work, but the results are less than sterling, to say the least.I don't have the programming/scripting brains to write a decent plugin for Nagios, so I was a bit stumped.Until I stu...

darren_g by L4 Transporter
  • 6939 Views
  • 6 replies
  • 2 Likes
  • 1031 Posts
  • 68 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks