Strata Copilot
    Panorama Interconnect Administrator’s Guide
    : Add a Firewall to a Panorama Node
    Focus
    Download PDF
    Focus
    1. Home
    2. Panorama
    3. Panorama Interconnect Administrator’s Guide
    4. Manage Firewalls with Panorama Interconnect
    5. Add a Firewall to a Panorama Node
    Download PDF

    Panorama Interconnect Administrator’s Guide

    Add a Firewall to a Panorama Node

    Table of Contents

    Add a Firewall to a Panorama Node

    Add a single firewall to be managed by a Panorama™ Node on Panorama Interconnect.
    Add a single firewall to be managed by a Panorama™ Node in order to manage the template stack and device group configuration from a centralized Panorama Controller. To bulk import multiple firewalls, see Import Multiple Firewalls to a Panorama Node.
    1. Perform initial configuration on the firewall so that it is accessible and can communicate with Panorama over the network.
    2. Log in to the Panorama web interface of the Panorama Controller.
    3. Select PanoramaInterconnectDevices and Add the firewall.
    4. Enter the firewall information:
      • Enter the Serial No of the firewall.
      • Select the Panorama Node to manage the firewall.
      • Select the Template Stack with which to manage the firewall configuration.
      • Select the Device Group with which to associate the firewall.
    5. Click OK to add the firewall as a managed device.
    6. Click Commit and Commit to Panorama to finish adding the firewall.
    7. Select PanoramaInterconnectPanorama Nodes and Synchronize Config.
    8. (Required for firewalls running PAN-OS 10.1 and later releases) Obtain the device registration authentication key required for onboarding new firewalls.
      1. Select PanoramaInterconnectPanorama Nodes and locate the Panorama Node you added firewalls to.
      2. Click the value in the Auth Keys column to display the device registration authentication key.
        The device registration authentication key is automatically generated for the Panorama Node.
      3. Copy the Auth Key.
    9. Configure the firewall to communicate with the Panorama Node.
      1. Log in to the firewall web interface.
      2. Select DeviceSetupManagement and edit the Panorama Settings.
      3. Enter the Panorama Node IP address in the first field
      4. (Optional) If the Panorama Node is in an HA configuration, enter the IP address of the secondary Panorama Node in the second field.
      5. Enter the device registration Auth Key you copied in the previous step.
      6. Click OK.
      7. Select Commit and Commit your changes.
    10. Verify that the newly added firewall is Connected.
      1. Select PanoramaInterconnectDevices.
      2. Find the firewall you added and verify that the Connection Status column displays Connected.
    11. (HA only) Copy the managed firewalls added to the primary Panorama Node to the secondary Panorama Node.
      This step is required to successfully push the Panorama Node configuration to managed firewalls for a Panorama Node in an HA configuration.
      1. Select PanoramaInterconnectPanorama Nodes and select the primary Panorama Node you added managed firewalls to.
      2. Select Copy Devices.
      3. Click OK when prompted to copy the managed firewalls from the primary Panorama Node to the secondary Panorama node.
    12. Push the Panorama Node Configuration to Managed Firewalls.

    © 2025 Palo Alto Networks, Inc. All rights reserved.