Add Firewall account

Add Firewall Accounts

Palo Alto Networks firewall comes preconfigured with a default administrative account (admin), which provides full read-write access (also known as superuser access) to the firewall.

1-Create Admin Role Profiles

The way you configure administrator accounts depends on the security requirements within your organization,

Since we are in a lab environment, I will show you how to create a local administrator account with local authentication.

Please look at PaloAlto web site for more information regarding “Administrative Roles” and “Administrative Authentication”

Select Device > Admin Roles and then click Add.

PA1_01

Enter a Name for the profile and on the Web UI and/or XML API tabs, set the access levels

PA1_02

On the Command Line tab, specify the type of access to allow to the CLI: superreader, deviceadmin, or devicereader

PA1_03

Then click OK to save the role.

PA1_04

2-Create account for each administrator

Select Device > Administrators and then click Add.

PA1_05

  1. Enter a user Name and Password for the administrator.
  2. Select the Role to assign to this administrator. You can either select one of the predefined “Dynamic roles” or “Role based” (a custom Role)

PA1_06

PA1_07

 

Click OK to save the account.

PA1_08

Note:  in a separate post I will go through “Password Profile” creating steps.

Click Commit to commit your changes.

PA1_09

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s