Users Guide
662 | Administration Dell Networking W-ClearPass Policy Manager 6.6 | User Guide
You can add multiple endpoint context servers of the same type.
4. Enter the appropriate values for each of the Palo Alto Networks Firewall > Add Endpoint Context
Server parameters described in Table 353.
5. When satisfied with the settings, click Save.
Parameter Action/Description
Select Server Type Choose Palo Alto Networks Firewall from the drop-down list.
Server Name Enter a valid server name. You can enter an IP address or a hostname.
Server Base URL Enter the server base URL in the following format:
https://{server_ip}/api/?type=keygen&user={username}&password={password}
Username Enter the username.
Password Enter and verify the password.
Verify Password
Username Transformation Choose one of the following options:
l None: Do not use any username transformation.
l Prefix NetBIOS name: Use the Prefix NetBIOS name in UID updates.
l Use Full Username: Use the full username in UID updates.
GlobalProtect Enable this option to send an HIP (Host Information Profiles) report to the firewall.
You must enable the GlobalProtect license on the firewall for this to work.
ClearPass Profiler Select this check box to enable sending of endpoint profile information.
ClearPass Role Select this check box to enable sending of the applicable role information.
UserID Post URL Enter the user ID post URL in the following format:
https://{server_ip}/api/?type=user-id&action=set&key={key}&cmd={cmd}
Validate Server Enable to validate the server certificate. Checking this option enables the
Certificate tab.
Table 353: Add Endpoint Context Server > Palo Alto Networks Firewall Parameters
Using the ClearPass Configuration APIto Load Endpoint Context Servers
If you use the W-ClearPass Configuration API to load Palo Alto Networks endpoint context servers, you should
include the following attributes in the XML file:
l PA_Panorama_RegisterDevice
l PA_Panorama_SendRoles