This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

About Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

Discussions

Start a conversation

Software download API

Hello all, are you aware of Palo Alto dynamic updates portal API? We are trying to automate content update version check across multiple firewalls. We just need to get the latest dynamic content, release date, etc. to automate identifying potential firewall failure to connect to update servers or misconfiguration in the firewalls update schedule.

batd2 by L4 Transporter
  • 1961 Views
  • 0 replies
  • 0 Likes

Collect logs for Windows and/or MAC GP clients using CLI

Hello,I would like to know if there is straightforward or creative way through which we can collect logs from GlobalProtect clients in MAC and/or Windows using CLI or programmatically.I have already referred to article https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClaLCAS but this talks of CLI option only for Linux cl...

Resolved! Pan-os-python with Panorama

Hello, I'm using the following code to check and create rules on my test-palo device: This is more or less just the example from the github page and it's working fine.I check the current Rules on the firewall before I start adding rules. fw = panos.firewall.Firewall(HOSTNAME, USERNAME, PASSWORD)rulebase = panos.policies.Rulebase()fw.add(rulebase...

mseiler by L1 Bithead
  • 7898 Views
  • 2 replies
  • 0 Likes

Terraform certificate deployment

Hi, Looking for a Terraform resource to deploy certificates on the Palo Alto firewalls. Looks that it is done through acme.sh script but using Terraform would be better. Is this kind of feature request to add this resource in the provider? Regards

XML API call creates persistent Web session

In the CLI, "show admins" will report my current CLI session.If I also log into the Web interface, "show admins" will now show a Web session in addition to the CLI session.After I click "logout" on the Web interface, "show admins" reveals that my Web session is now gone. However, if I run a python script using the XML API from a remote server to...

doug.fsu by L0 Member
  • 2178 Views
  • 0 replies
  • 0 Likes

Fix not publicly-trusted certificate on gpcloudservice API

It seems recently there has been change on the "gpcloudservice.com" API recently. Before the change this service was using a publicly-trusted certificate (not sure if Google, Digicert,...) but I just found out right now the site is using a Palo Alto not publicly-trusted certificate, which makes things break if you enforce the "verify=True" on re...

Untitled picture.png
MarcelST by L3 Networker
  • 2737 Views
  • 0 replies
  • 1 Likes

Resolved! Beginners questions, some errors.

Hi,Some time ago, I've started PaloAlto automation using ansible. At first I've used roles, and everything worked fine, but it's no longer supported, so I decided to use collections.I'm using Ansible 2.9.6, installed on Ubuntu 20.04LTSI've installed things like python3, python2, pip3, pip, pan-python, pandevice, xmltodict, because I found them i...

Refresh Session API Request Fails on 2nd Attempt

At https://api.docs.prismacloud.io/reference#extend-session it says - Extend a user's session. The JWT token returned is valid until the next session timeout occurs. This method requires a valid session token to be passed (token from a prior successful extend or login calls). Issue - when using JWT token returned in response body from 1st Refres...

Blocking files based on content

Hello, I'm completely new to PAN, but we need to create a solution that blocks files based on content where the code that examines the content needs to be our custom code. For example the file could be sent to a microservice for examination and that service would determine whether or not to let that file through. Is that even possible ? Regards,...

tdracz by L0 Member
  • 3277 Views
  • 3 replies
  • 0 Likes

Get zones info for two ip (multiple firewalls)

So, say i have a multiple firewalls of many zones. If i want to create a rule between two servers in different firewall i need to create one rule in each firewall. For example trust to utrust and in the other firewall untrust to trust. (in some cases we allow it in one of the firewalls by default). If I need to type in this manualy in the autom...

hbalzac by L3 Networker
  • 3024 Views
  • 1 replies
  • 0 Likes

refreshall() method usage

Trying to understand the correct usage of the refreshall methodper documentation:refreshall()Refresh all Predefined ObjectsThis method refreshes all predefined objects. This includes applications, application containers, services,and tags.CAUTION: This method requires a lot of overhead on the device api to respond. Response time will varyby plat...

risc527 by L0 Member
  • 3791 Views
  • 1 replies
  • 0 Likes

Resolved! PANDEVICE in Python to query details of a specific Static Address Group

I am relatively new to using PANOS/PANDEVICE libraries in Python with Panorama. I am trying to figure out how to get a list of AddressObjects associated with a specific Static AddressGroup in the "Shared" DeviceGroup. object_name = "H-i-061d40e4013db52ae"pano_device_group = panorama.DeviceGroup('shared')pano.add(pano_device_group)object_list =...

Rest API fetching a security policy from Panorama

Greetings, I’ve run into a challenge with using the REST API to get the security policy from device groups in Panorama. I’m hoping you may know someone who can answer this. If I use the XML API and get the policy from a particular device group, I get only the rule that belong to that device group, which is what I want.If I use the equivalent RES...

mrzepa2 by L2 Linker
  • 2798 Views
  • 0 replies
  • 0 Likes

Is it possible to programatically update a user's GlobalProtect credentials

Hi all, Domain migration, lots of users, want to automate as much as possible to prevent user error. I know that I can clear a user's GP creds usingcmdkey.exe /delete:gpcp/LatestCPand next time GP starts (either because I restart the PANGPS service or reboot the computer) GP prompts for new credentials to connect.However, if I update the cred wi...

Mark_F by L0 Member
  • 5516 Views
  • 3 replies
  • 0 Likes

Demisto Mail Sender Integration (problem)

Hello,I am using Demisto community edition and i want to integrate it with "SMTP" in order to be able to send e-mails, but i couldn't and encountred the following error message. "(-1, 'E Fatal error: tls_start_servertls() failed') (85)" So I am asking for help, and thanks very much in advance.Cordialy.

mail error.png
ilyes23i by L0 Member
  • 2064 Views
  • 0 replies
  • 0 Likes
  • 1031 Posts
  • 68 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks