This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

About Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

Discussions

Start a conversation

How to retrieve / update a registered dynamic address objects

Hello,For Palo Dynamic address objects, trying to find 2 things.How to retrieve an already registered Dynamic Address Object.How to update the tag of already registered Dynamic Address Object. I have used below XML Body for register<uid-message> <version>1.0</version> <type>update</type> <payload> <register...

Resolved! PAN-OS 10.2 API key acquisition without password in URL?

Is it possible to request an API key via "/api/?type=keygen" without providing the account password in the URL? This seems like a notable security issue since the URL is not encrypted. These pages suggest it is possible: Authenticate Your API Requests, API Authentication and Security. However, my testing of the "Authentication: Bearer" header vi...

Resolved! Issues to create my First Playbook on a VM-500 Virtual Palo Alto Firewall

Hello Palo Alto Community I've been trying to make work my first Playbook in ansible, to pretty much whatever it works, right now Im trying to create a test address object, but I kept geeting what it looks like, a syntax error this is the configuration of my playbook. The image attached is the error im seeing(Looks like connection to the dev...

Visual Basic script via API. How to add changes

Hello, I have configured a script in Visual Basic to disconnect all the GP VPN users logged but now I need to make an exception in order to not disconnect only one user. I don't know how to code this exception. After reading all the users logged in the firewall I make the following to disconnect them: j = 0;while (user1[j] != null){if (user1[j...

Get Tunnel ProxyID - panos python SDK

Hi all,i really need for some help.I´m trying to retrieve the proxy_id configured in the firewall using SDK, it´s not working:import getpass from panos import network from panos import policies from panos import firewall from panos import objects from termcolor import colored import pandas as pd import re user = 'admin' password = 'admin' firew...

Resolved! Unable to set serial number on Panorama via Ansible Playbook

Hi, I have provisioned a Panorama in CSP using flex credits. I then spun up a Panorama instance using Terraform. After the instance has initialised (I browse to the Panorama Web UI login screen via public IP), I kick off my ansible playbook, which has the initial configuration. First attached screenshot shows that the serial number is "Unknown"...

SZanpure by L2 Linker
  • 6393 Views
  • 2 replies
  • 0 Likes

PAN-OS-PHP Script issue while replacing services from lower device group to shared

Hello Community, I am working right now with PHP scripting to merge the services (in lower device group) to shared services and replace it service groups and rules by shared service.For example, I have a service (TCP-443) in lower device group which I want to merge with the service (tcp_443) from shared in Panorama. I am using the below script ...

Save firewall device state from Panorama (API)

I try to backup all the device states of firewalls managed by a Panorama, and to download these device states on the server where the script is run. When I try to backup using the firewall API itself, it is working (the output file is indeed the device state).When I try to backup using the Panorama API (with the serial number of the firewall in ...

brisonjf by L0 Member
  • 4300 Views
  • 1 replies
  • 0 Likes

Palo Alto Rest API

I need speed/duplex/state information from Firewall Interfaces. in panorama gui it is showing in Link-State. I need the same information via REST API.

ARMohan by L0 Member
  • 1510 Views
  • 0 replies
  • 0 Likes

network interface through loop/iteration

i'm trying to create interface every time i run my playbook and meanwhile i also need to make sure that it will compare the existing interface details and creating new one by incrementing interface/tunnel no... i have tried to create two task , first task about to gather interface facts and that works fine. but i'm not sure how use " create inte...

Ansible error while fetching zone from Panorama template stack

Hi ,i'm preparing for IPSEC in palo alto using Ansible. we have panorama template stack used for zone configuration to all firewall. when we tried to configure tunnel interface and attached to zone( zone was inherited from template stack) , i'm getting below error.. "msg": "Failed setref: edit failed, may need to override template object XYZ fi...

Retrieving logs from PA device via Panorama 6.x XML API

Hello, When I login to my PA device via ssh and run the command show log config result equal succeeded I get list of records. I would like to get the exact same result but via Panorama XML API. I tried: https://panorama/api/?type=op&cmd=<show><log><config></config></log></show>&target=serialnumber&...

NirI by L0 Member
  • 7148 Views
  • 1 replies
  • 0 Likes

Need assistance with PAN OS upgrade playbook

Hi I am trying to start utilizing Ansible for upgrading our Palo firewalls. Currently, I am trying to run playbook of upgrading PAN OS device using Palo Github collection (https://github.com/PaloAltoNetworks/ansible-playbooks). I ran the following playbook, and I am getting the following error message: ansible-playbook upgrade_single_major.yml...

Amin2 by L2 Linker
  • 2753 Views
  • 1 replies
  • 0 Likes

Unable to commit anything to Panorama via Terraform after PAN-OS upgrade to 10.1.5-h1.

Below is the error is from attempting to keep the value to the "hip_profiles" argument as "any" in the secuirty policy rule-set. An execution plan has been generated and is shown below.Resource actions are indicated with the following symbols:~ update in-placeTerraform will perform the following actions:# module.FW_TSA.module.FW_Security_Polici...

morahman by L1 Bithead
  • 3345 Views
  • 2 replies
  • 0 Likes
  • 1031 Posts
  • 68 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks