PAN-OS® and Panorama™API Usage Guide
  • PAN-OS® and Panorama™API Usage Guide
  • All PAN-OS Documentation
  • All Documentation
PAN-OS® and Panorama™API Usage Guide
: API Authentication and Security
Focus
Download PDF
Focus
  1. Home
  2. PAN-OS
  3. PAN-OS® and Panorama™API Usage Guide
  4. About the PAN-OS API
  5. Structure of a PAN-OS XML API Request
  6. API Authentication and Security
Download PDF

PAN-OS® and Panorama™API Usage Guide

API Authentication and Security

Table of Contents
End-of-Life (EoL)

API Authentication and Security

To use the API (XML or REST), you must enable API access for your administrators and get your API key. By default, the firewall and Panorama support API requests over HTTPS. To make API request over HTTP, you must configure an interface management profile.
To authenticate your API request to the firewall or Panorama, provide the API key in any of the following ways:
  • Use the custom HTTP header,X-PAN-KEY: <key> to include the API key in the HTTP header.
  • For the XML API, include the API key as a query parameter in the HTTP request URL.
  • Use Basic Authentication to pass the admin credentials asusername:password with Base64 encoding in an Authorization header field. 
    Authorization: Basic ****************************
As a best practice:
  • Set an API key lifetime to enforce key rotation; you can also revoke all API keys to protect from accidental exposure.
  • Use a POST request for any call that may contain sensitive information.
You cannot use basic authentication when you Get Your API Key.
To enforce key rotation set an API key lifetime; you can also revoke all API keys to protect from accidental exposure.

Technical Documentation

Company

Legal Notices

© 2025 Palo Alto Networks, Inc. All rights reserved.