Palo Alto Networks PAN-OS
Configure the action connector for Palo Alto Networks PAN-OS.
In this guide, you'll set up a trusted relationship between Radiant and Palo Alto Networks PAN-OS to enable automated and one-click response actions.
At the end of this configuration, you will provide Radiant Security with the following:
Administrator Username
Administrator Password
PAN-OS BaseURL
Prerequisites
Add an administrator in Palo Alto
Login to your Palo Alto firewall.
On the top navigation bar, click Device.
From the left navigation menu, click Admin Roles.
Add a new admin profile:
Name:
radiantsecurityadmin
Add the required permissions
XML API
Commit (Enable)
REST API
Objects - Addresses (Enable)
Objects - AddressGroups (Enable)
Device - VirtualSystems (Read Only)
Click OK to create the admin profile.
From the left navigation menu, click Administrators.
Add a new user with the following features:

Name:
radiantsecurity
Administrator Type: Role Based
Password:
<generated password>
Profile: radiantsecurityadmin
Choose the role created in the previous step
Important note: Save both username and password of the administrator profile. This will be provided to Radiant Security in a later step.
9. In the top navigation menu, click Commit to save the configuration changes.
Important note: On the connector configuration we must also save PAN-OS base URL. This is both the API domain to be used and PanOS web URL that we need to add to the Radiant connector.
Create the action connector in Radiant Security
Login to Radiant Security.
Navigate to Settings > Action Connectors and click + Add Connector.
Search for and select Palo Alto Networks PAN-OS and then click Credentials.
Under Credential Name, enter a credential name (
PAN-credentials
for example)Under Required Credentials, add the information you obtained from the previous step:
Administrator Username
Administrator Password
PAN-OS BaseURL
Click Add Connector to save your changes.
Important note: Palo Alto Firewall must be reachable for Radiant to execute the actions.
Last updated