Objects > Devices
Review the device profiles or create a new device profile.
Also known as the Device Dictionary, this page contains
metadata for device objects. Review information for existing device
objects or add a new device objects. Using device objects as match
criteria in security policy allows you to create device-based policy,
where the firewall dynamically updates and applies security policy
to new and existing devices. Palo Alto Networks updates the Device
Dictionary via dynamic updates, which you can view in .
Button/Field | Description |
Name
Legacy Mode
| The name of the device object. |
Location |
The location of the device group for the device object.
|
Matching Criteria
Advanced Mode
|
The attributes used to match assets to the Advanced Device-ID object. The
matching criteria is defined in IoT Security.
|
Source
Hybrid Mode
|
The source of the Device-ID object, whether it is created using legacy or
Advanced Device-ID.
|
Locally Exists
Advanced Mode
|
Whether or not the Advanced Device-ID object exists locally on the firewall.
|
Category
Legacy Mode
|
The category of the device object (for example,
Video Audio Conference).
|
Profile
Legacy Mode
| The device profile for the device object. |
Model
Legacy Mode
| The model of the device object. |
OS Version
Legacy Mode
| The OS version of the device object. |
OS Family
Legacy Mode
| The OS family of the device object. |
Vendor
Legacy Mode
| The vendor for the device object. |
Add
Legacy Mode
|
Click Add to add a new device object. Enter a
Name and optionally, a Description.
Select additional metadata for the device, such as Category,
OS, and Model. You can also
Browse the list of devices to select the device you want to
add. Click OK to confirm your changes.
|
Delete
Legacy Mode
| Select a device object you no longer need then Delete it. |
Clone
Legacy Mode
|
Select the device object on which to base the new device profile and
Clone it.
|
PDF/CSV |
Export the list of devices in PDF/CSV format. You can apply
filters to create more specific outputs as needed. Only visible columns in the web
interface will be exported. See
Configuration Table Export.
|
Clear Local Device-ID
Advanced Mode
|
Remove in-memory Advanced Device-ID objects that aren't being used by any
firewall runtime policies. The Advanced Device-ID object configurations will remain
unchanged.
|