create_host_multiple_groups
Description
Create address objects for hosts on the active Palo Alto device and add those objects to one or more baseline address groups. Baseline sets (_baselinegroup) expand to predefined group lists (windows/rhel/domain variations) and the playbook supports combining those with any supplied panos_addressgroup.
Credentials
- panos_username / panos_password
Input
| Variable | Description |
|---|---|
target |
Comma-separated hostnames/FQDNs to create |
ip_adres |
Comma-separated IP addresses matching target order |
_baselinegroup |
Name of a baseline set (e.g. Baseline_all-servers, Baseline_windows-servers, Baseline_rhel-servers, Baseline_windows-domain-joined, Baseline_rhel-domain-joined) |
panos_addressgroup |
Optional list of additional address groups to include |
provider |
PANOS connection provider created by get_active_paloalto.yml |
_commit |
If Ja (or undefined), the handler will commit changes |
Output
- Address objects created/updated for each host.
- Objects added to the combined set of baseline and additional address groups defined by
_baselinegroupandpanos_addressgroup. - Optional: a firewall commit via handler when
_commitisJaor not defined.