Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.
Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.
Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.
is there a ansible module for pan-os for authentication profiles. Thank you
Hi Guys I am trying to create a App Id though xml api. I looked at the request though Debug Console:<request cmd="set" obj="/config/devices/entry[@name='localhost.localdomain']/vsys/entry[@name='vsys1']/application/entry[@name='test2']" cookie="3920960267560155" newonly="yes"><default><ident-by-ip-protocol>12</ident-by-ip-pr...
I'm trying to create a tunnel interface using Ansible module panos_tunnel from Galaxy role PaloAltoNetworks.paloaltonetworksMy playbook is failing because it cannot detect correct netflow-profile value. In my configuration I don't have any netflow-profile selected, so in GUI I'm selecting it as None. Through GUI this works just fine.When I'm ru...
Hello. Working with firewalls on version 7 with a query to the following path: xpath=/config/predefined/threats/vulnerability I was able to get an XML with CVE of every threat, but on version 8 XML doen't contain associated CVE. Are any other path to get threat ID/CVE from the API? Thanks
Is it possible to make api call from the panorama to get IPsec tunnel status form one firewall to another firewall.
IHAC who are planning to evaluate our firewall which needs block bad ip duration through API call. For example, they want to know we can block one bad ip after one hour to release. Any suggestions and input?
Hi,I'm trying to create a restful api call against our firewall to map historical QoS Statistics on a certain interface.I've seemed to come across an issue that's not working and I was hoping you could help.First question first: the information that I'm trying to get is the QoS Statistics (Network -> QoS -> Statistics)Has that been exposed...
Hi, We are Seeing below error while using panos_static_route module. Can you please help to resolve it. An exception occurred during task execution. To see the full traceback, use -vvv. The error was: AttributeError: 'ConnectionHelper' object has no attribute 'apply_state'fatal: [localhost]: FAILED! => {"changed": false, "module_stderr": "...
Hey Guys,I am very new to Ansible and was hoping someone could help me with this issue I'm running into. I downloaded and installed ansible galaxy and was testing the following "Match firewall rules". It works on vsys1 but if any of my firewalls don't have a vsys or the rule is on any other vsys (example vsys 2), i get the following error: "fata...
Hello everybody. My problem is that I have two Prisma accounts, and I want to get a policy from one account and upload it to the second account, via API. I can get/upload standards, requirements and sections, and I can get policies, but I can't upload the policies, I always have 400/500 error.If you could give me an example of how to do it, that...
Hi All, So in my environment, I have to setup panorama with multiple auto scaling firewalls on cloud.The first requirement would be of API key. I found this article explaining how to generate it. https://docs.paloaltonetworks.com/pan-os/8-1/pan-os-panorama-api/get-started-with-the-pan-os-xml-api/get-your-api-key My query is : Where to run the co...
I have been able to take what was given at Ignite '18 and can run the create_service.yml in se_summit folder without issue. However, after installing Ansible Tower, I can't get it to work at all. Doing some digging I was able to determine that it's either an issue with the firewall or username / password. I tested my theory by attempting to run...
Hi, Is there any way to tell the PAN to expire all current API keys via the API? I am following this https://docs.paloaltonetworks.com/pan-os/9-0/pan-os-admin/firewall-administration/manage-firewall-administrators/configure-administrative-accounts-and-authentication/configure-api-key-lifetime.html . I would like to connect via the API or the CLI...
Is it possible to create new security profiles and security profile groups via terraform? I've seen many examples where you can associate profiles or a group to a security rule, but none where you actually define the profiles themselves. If not, is the expectation that you'd either create the profiles manually or via the API?
