This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

About Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

Discussions

Start a conversation

How can we activate an authcode for a feature license in PA-VM firewall using ansible? I tried panos_lic module, but it did not worked.

Hello All, I am using ansible to deploy a bunch of PA-VMs. I have been using ansible to push various configurations to it including the base license. However, I am unable to update an authcode for a feature license (for example DNS) using the panos_lic module. May I know if anyone can share more thought on this? Basically I want to update feat...

Create a new Zone Protection Profile using XPath?

I am trying to add a Zone Protection Profile from an XML document to a firewall using the XPath API. I don't want to have to iterate through each element and add it to the profile. Is there a way to add it from an XML file or block? def add_dos_profile(self): ret = True with open("DOS.xml") as f: element = f.read() api_url...

JBishop by L0 Member
  • 2088 Views
  • 1 replies
  • 0 Likes

Help on structure on script to find host

How would you achive this?So we have alot of vlans on alot of firewalls, vsys and vr. Our ipam is decent documented but it would be nice to make a api call to the firewalls to get the info insted. I would like to find theFirewall and Zone where a specific ip is routed. Is the way to loop through all the firewalls build a list of all the vrs on a...

zol123 by L1 Bithead
  • 1812 Views
  • 1 replies
  • 0 Likes

Resolved! Terraform - Unable to create Security Policy

I'm using Terraform to deploy configurations on a VM-50 series virtual Palo Alto Firewall appliance. I have a problem when it comes to deploying a security policy using panos_security_policy. Essentially, the policies never create and the Terraform command status stays on 'Still Creating...'. Is there a known issue with using Terraform to cre...

Ajene by L0 Member
  • 6835 Views
  • 5 replies
  • 0 Likes

Resolved! Number of commands at once

Here is my issue, why does Palo seem to have a hard time handling anything more than 30 lines of CLI at a time? Is there a preferred terminal emulator that works best with Palo Alto such as SecureCRT? It's awful, the lines wrap back around onto themselves making it difficult to "tab" though commands. But mostly, if I put in more than 25 to 30...

PA CPU usage via the API

Hello All, In PA Firewall Dashboard we have the system Reousrces widget, were we can see the Management CPU and Data Plane CPU usage, I was trying to do the same using the API, but I'm not sure how PA are calculating the values, The GUI is sending a POST request to the backed PHP code (DashboardDirect.getSystemResources) to get the values. But...

How to generate password hash

I am working on automation for managing multiple password changes in Panorama and in the API calls only work with password hashes, rather than the plain text password. Have you any idea what is the process for creating(and reading) the password hash. I presume it uses the Panorama master key. I am aware that there is a CLI command for generat...

batd2 by L4 Transporter
  • 2398 Views
  • 0 replies
  • 1 Likes

Panorama with pan-os-python API

Hi, I have three firewalls added to a device group in Panorama. I am accessing Panorama via pan-os-python API and from there I want to fetch some device group "MyDG" and then delete one of the firewalls from panorama based on the hostname of the firewall. I can see the hostnames set/configured in Panorama > Managed Devices > Summary in the...

mtkh by L0 Member
  • 4057 Views
  • 1 replies
  • 0 Likes

Cortex - Get all Incidents

Hi Cortex API community experts, I am trying to generate a monthly report for various areas of the business for a list of Incidents raised during the month for their respective servers. I was hoping that the "get_incidents" api could help with this. As I could pass in predefinded queries with a list of servers for each department. API:https://{{...

Resolved! Terraform for Panorama Configuration management

Hi allDo you use Terraform for managing Panorama configuration and particularly routine security policies creation and changes? Is there any issues and do you have any feedback? I know this can be done well with Ansible, but for number of reasons Ansible cannot be used in our case.

batd2 by L4 Transporter
  • 6831 Views
  • 4 replies
  • 0 Likes

Resolved! Ansible playbook using panos_op "Missing required library."

Trying the run an existing playbook via Github Actions and the error message is "Missing required library."I cannot figure out which library could be missing. The execution of the playbook is returning me (with -vvvv option in command line) TASK [show list of all interfaces] ********************************************* task path: /opt/actions...

rbolze by L0 Member
  • 10318 Views
  • 4 replies
  • 0 Likes

converting existing policies into ansible code

so - i'm just getting starting with ansible automation for my palo firewalls. have some basic playbooks working...but now it's time to step it up. One of my main east/west segmentation firewalls has roughly 100 policies. Is there a way to ingest these rules into ansible - or somehow turn them into code so that future commits can become automa...

Certificate and private key import to Panorama fails

Does anyone experience issues with importing certificate and key in pem format using panos_certificate_import? I can import it without any issues via GUI. I have exported the cert from panorama and trying to re-import it but that fails. │ Error: Import of gp-cert failed. Failed to extract certificate │ │ with module.panorama_gpvpn_gateway["gpvpn...

Resolved! Automated configuration of GlobalProtect Gateway with XML API or CLI

I have a requirement to configure GlobalProtect on-demand with code on PAs. I am stuck on Network > GlobalProtect > Gateways.My code calls the XML API and creates certificates, imports public cert, imports SAML file, creates GP portal, add firewall rules etcI am able to configure all that and GlobalProtect > Portals just fine, just not ...

  • 1031 Posts
  • 68 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks