Palo Alto Firewall Configuration Audit Compliance File Reference

The compliance checks for Palo Alto are different than other compliance audits. One major difference in these audits is the heavy use of XSL Transforms (XSLT) to extract the relevant pieces of information (see Appendix C for more information). Palo Alto Firewall responses are in XML format for most of the API requests, making XSLT the most efficient method for auditing. If you are not familiar with XSLT, you can of think of it as a way to query an XML file to extract the data that you want, in a format that you want. In simple terms, XSLT is what SQL is to databases.

The Palo Alto Audit supports two types of checks: AUDIT_XML and AUDIT_REPORTS.

This section includes the following information:

• AUDIT_XML
• AUDIT_REPORTS
• Palo Alto Firewall Keywords