Hi All, Can anyone tell me what are the limitations of using the API calls??
Hi everyone, I want to integrate the Palo Alto (Panorama) API into Demisto in order to do automatic blacklisting of malicious IPs (as determined in a phishing playbook). One concern the infrastructure team has is whether or not the automatic adding to the blacklist might prematurely commit changes if - for instance - the infrastructure engineer ...
Hi,I am new here!I want to extract the ARP table from our PA-5000's.At this moment, I can do this by using the CLI ("show arp all").Is there another way to do this (by using SNMP or API)?/api/?type=op&cmd=<show><arp></arp></show> gives me error 17Kind regards!Karel
I have a customer that has multiple growing number of subscriptions on Azure and he would like to know if there is a better way configure them, instead of creating Service Principles, one by one. PS: if the subscription ID was not a required field, the client ID could bring all the subsciptions from one client-id. Thanks!
Hi,Our customer is implementing the Lets Encrypt (https://letsencrypt.org/) in the whole his infrastructure. This way, every certificates SSL expired in 90 days.The Palo Alto use certificate SSL to VPN, Captive Portal, and others services.Is there an automatic procedure of how to change these certificates? Has the Palo Alto API support for this ...
Hello. I apologize if this question is already answered. Is it possible to export the config-bundle using the XML API?I can only download the Panorama config. And i do not have direct IP access to the firewalls that are connected. If this is not possible, I would really like this to be a feature. Thank you.
Help Needed! I've been having this issue for a while now. I have a ticket open; yet, I am not able to get this API call to disconnect the connected GP gateway users. It's throwing me an 'invalid username' error each time, when I try to force-logout the user. Any help spotting the issue is appreciated! >>> kickOut = requests.get('https:/...
My Palo Alto is not connected to the internet. When I need to update it I must manually download the updates from a browser, copy them to my PA, then apply them.Is there a way to autmate the download of the updates? Ideally I only want to download the newest updates each time. Any ideas?
Hi, does the ansible module supports Ansible Facts?
Hi,Is there any module(s) in ansible that can be used to upgrade pan devices, I know there is pan-op module but can't do that much with that module, or perhaps aanible playbook?Thanks in advance..
I can see that here https://github.com/PaloAltoNetworks/ansible-pan/issues people are adding requests, is this the preferd way, or should i contact my local SE insted?
Hi all,I want to use the APIs to test if the source, destination, protocol and port that I've inserted, match with one of my NAT policy rules. The complete request of the API that I've implemented is:https://192.168.111.192/api/?type=op&cmd=<test><nat-policy-match><source>10.226.163.81</source><destination>10.22...
Hello Community,we would use an API to see the output of show running nat-policy-addresses command for each vsys.The following API work properly when on the firewall there is only one vsys. https://<firewall-IP>/api/?type=op&cmd=%3Cshow%3E%3Crunning%3E%3Cnat-policy-addresses%3E%3C%2Fnat-policy-addresses%3E%3C%2Frunning%3E%3C%2Fshow%3E&...
i have started working on minemeld recently.i have tried adding ibm node xfe as a extension to minemeld.but i always get a error of invalid minemeld exension.so, how do i overcome it.can someone help. i get the following:Cloning into '/opt/minemeld/local/library/8f39b30a-f001-41c0-a3d1-9ec24d63f69c'...Invalid MineMeld extension - minemeld.json ...
How can I get device group specific policies as well as shared object, object groups etc. from the Panorama. I tried with API browser and cli (with debug cli on) but could not find specific path/command. I have checked the xml running config and can see the path however not sure how to use it and the type of operation. Thanks in advance!
