Login
    Contents x
    Palo Alto Networks Panorama
    • 21 Sep 2023
    • 1 Minute to read
    • Print
    • Dark
      Light
    • PDF
    Contents

    Palo Alto Networks Panorama

    • Updated on 21 Sep 2023
    • 1 Minute to read
    • Print
    • Dark
      Light
    • PDF
    Article Summary

    The Palo Alto Panorama management server provides centralized monitoring and management of multiple next-generation firewalls and appliance clusters.

    Types of Assets Fetched

    This adapter fetches the following types of assets:

    • Devices

    About Palo Alto Networks Panorama

    Use cases the adapter solves

    Connecting Panorama to Axonius will allow you to quickly identify which assets are accessing the network over VPN. Specifically, Axonius can identify which private IP address is being used on the organization's internal network and identify which public IP address was used to access the VPN.

    Data retrieved by Panorama

    Network interface data about how the client connected to the VPN.

    Parameters

    1. Panorama Domain (required) - The hostname or IP address of the Palo Alto Panoram server.
    2. User Name and Password (optional) - The credentials for a user account that has the Required Permissions to fetch assets.
    3. API Key (optional) - An API Key associated with a user account that has the Required Permissions to fetch assets.
    NOTE

    If User Name and Password are supplied, this field will be ignored.

    1. Verify SSL - Select whether to verify the SSL certificate offered by the value supplied in Panorama Domain. For more details, see SSL Trust & CA Settings.

    2. For details on the common adapter connection parameters and buttons, see Adding a New Adapter Connection.

    image.png

    Advanced Settings

    Note:

    Advanced settings can either apply for all connections for this adapter, or you can set different advanced settings and/or different scheduling for a specific connection, refer to ​Advanced Configuration for Adapters

    1. Fetch ARP data (required, default: True) - Select whether to fetch ARP data from the Palo Alto Panorama server.
      • If enabled, all connections for this adapter will fetch ARP data from Palo Alto Panorama.
      • If disabled, all connections for this adapter will not fetch ARP data from Palo Alto Panorama.

    Required Permissions

    Note:
    As a best practice, ensure that you create a separate, dedicated account for API access to Palo Alto Panorama.

    • If you have supplied a User Name - the username must be provided the ’Superuser (read-only)' role.
      Instructions for associating this role with an account can be found here.

    • If you have supplied an API Key - You can obtain an API key by following the instructions here as an alternative to using a username/password as described above (once the API has been enabled as described here).

    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout