Skip to content

D09 Automation Docs

remove_pa_address_object

D09 Automation Docs

remove_pa_address_object

Go to Automation

View in GitLab

Description

Remove one or more address objects from specified Palo Alto address groups or from all groups that contain them. Optionally delete the address object(s) from the device and commit the configuration.

Credentials

panos_username / panos_password

Input

Variable	Description
`_hst2remove`	Comma-separated list of host object names (or FQDNs) to remove
`_removefromgroups`	Comma-separated list of address group names to remove objects from (ignored when `_removefromallgroups` == `Ja`)
`_removefromallgroups`	`Ja` to remove from all groups containing it; `Nee` to remove only from specified groups
`_deletefrompa`	`Ja` to delete the address object itself from the device after removal from groups
`provider`	PANOS connection provider (from `get_active_paloalto.yml`)
`_commit`	`Ja` to commit the firewall after changes

Output

Address objects removed from the requested address groups.
Optional: address object(s) deleted from the device when _deletefrompa == Ja.
Optional: configuration commit when _commit == Ja.

Dependencies