Palo Alto Panorama
App Vendor: PaloAlto
App Category: Network Security
Connector Version: 1.0.0
API Version: Pan OS 9
About App
The PaloAlto Panorama app in the Orchestrate application allows security teams to integrate with the PaloAlto Panorama enterprise application to create a centralized management platform, from where security teams can oversee all applications, users, and content traversing your network. The insights gathered can be used to create policies to protect and control the network.
The PaloAlto Panorama app is configured with the Orchestrate application to perform the following actions:
Action Name | Description |
|---|---|
Get a List of all Applications | This action retrieves a list of all applications. |
Get Details of a Firewall System | This action retrieves the details of a firewall system. |
Run Query | This action runs a query in the PaloAlto Panorama application. |
Get Policy Details | This action retrieves the details of a specific policy. |
Commit Changes | This action commits the changes in the PaloAlto Panorama application. |
Create Member | This action creates a member in the PaloAlto Panorama application. |
Add Member | This action adds a member in the PaloAlto Panorama application. |
Remove Member | This action removes a member from the PaloAlto Panorama application. |
Configuration Parameters
The PaloAlto Panorama app is configured with the Orchestrate application to perform the following actions:
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Base URL | Enter the IP address or FQDN of Panorama. Example: <http[s]://fqdn-ip_address[:port]> | Text | Required | |
API Key | Enter the API key for authorization. Example: "XXXX972a2167c93df3372de34c2fb18bae5d319a" | Password | Required | |
SSL Verification | Optional preference to either verify or skip the SSL verification. By default, the option is set to No. | Boolean | Optional | Allowed values:
|
Action: Get a List of all Applications
This action retrieves a list of all applications in PaloAlto Panorama.
Action Input Parameters
This action does not require any input parameters.
.
Action: Get Details of a Firewall System
This action retrieves the details of a firewall system from the PaloAlto Panorama application
Action Input Parameters
This action does not require any input parameters.
Action: Run Query
This action runs a query in the PaloAlto Panorama application.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Log Type | Enter the log type. Example: "traffic" | Any | Required | Allowed values:
|
Query | Enter the query. Example: “url” | Text | Required | |
Offset Range | Enter the offset range. The maximum range allowed is 5000. Example: 100 | Integer | Required | |
Direction | Enter the direction. Example: "backward" | Text | Required | Allowed values:
|
Example Request
[
{
"query": "url",
"log_type": [
"threat"
],
"direction": [
"backward"
],
"offset_range": "1-100"
}
]Action: Get Policy Details
This action retrieves the details of a specific policy from the PaloAlto Panorama application.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Policy Name | Enter the policy name. Example: "allow-dns" | Text | Required | |
Policy Type | Enter the policy type. | Text | Required | Allowed Values:
|
Device Group | Enter the device group. By default, the value is set as "shared". Example: "application level gateway" | Text | Optional |
Example Request
[
{
"policy_name": "shared",
"policy_type": "security",
"device_group": "application level gateway"
}
]Action: Commit changes
This action commits the changes in the PaloAlto Panorama application.
Action Input Parameters
This action does not require any input parameters.
Action: Create Member
This action creates a member in the PaloAlto Panorama application.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Address Entry | Enter the address entry. Example: "Google-DNS3" | Text | Required | |
Indicator Value | Enter the indicator value. Example: "8.8.8.8" | Text | Required | Supported values:
|
Indicator Type | Enter the indicator type. Example: "ip" | Text | Optional | Supported values:
Default value:
|
Example Request
[
{
"ioc_type": "ip",
"ioc_value": "8.8.8.8",
"address_entry": "Google-DNS3"
}
]Action: Add Member
This action adds a member in the PaloAlto Panorama application.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Address Group Entry | Enter the address group entry. Example: Tip-Block_group" | Text | Required | |
Address Entry | Enter the address entry. Example: "Google-DNS3" | Text | Required |
Example Request
[
{
"address_entry": "Google-DNS3",
"address_group_entry": "Tip-Block_group"
}
]Action: Remove Member
This action removes a member from the PaloAlto Panorama application.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Address Group Entry | Enter the address group entry. Example: "Tip-Block_group" | Text | Required | |
Address Entry | Enter the address entry. Example: "Google-DNS3" | Text | Required |
Example Request
[
{
"address_entry": "Google-DNS3",
"address_group_entry": "Tip-Block_group"
}
]