Error:
An unexpected error occurred. Please click Reload to try again.
Error:
An unexpected error occurred. Please click Reload to try again.
How to Retrieve the JSON Web Token (JWT) using Prisma Cloud Acc... - Knowledge Base - Palo Alto Networks

How to Retrieve the JSON Web Token (JWT) using Prisma Cloud Access Key ID and Secret Key?

14168
Created On 11/27/21 14:54 PM - Last Modified 04/30/22 06:57 AM


Question


  • How to Retrieve the JSON Web Token (JWT) using Prisma Cloud Access Key ID and Secret Key?

Environment


  • Prisma Cloud

Answer


  • Prisma Cloud has a REST API that enables configuration of custom integrations for cloud security needs.
  • This can, for example, be used to automate sending alert notifications to an in-house tool to extend the DevOps security capabilities or for host defender automation.
  • Prisma Cloud requires an API Access Key to enable programmatic access to the REST API.
  • Access Key is made up of Two Parts : an Access Key ID and a Secret Key
  • Prisma Cloud also requires a JSON Web Token (JWT) or an Auth Token used to authenticate all subsequent REST API requests on Prisma Cloud.
  • Follow the steps below to retrieve the Auth Token from Access Key ID and Secret Key.
  1. Create an Access Key i.e. an Access Key ID and Secret Key : Create and Manage Access Keys
  2. Using the generated Access Key ID and Secret Key, run the following curl call to retrieve the JSON Web Token (JWT) or Auth Token.
Note : Replace the URL in the curl call with the "Prisma Cloud API URL" corresponding to the Prisma Cloud Admin Console URL : Prisma Cloud API URLs. In the body parameters, specify your Access Key ID as the string value for the username and your Secret Key as the string value for the password.

            curl -X POST \
            https://api.prismacloud.io/login \
            -H 'Content-Type: application/json' \
            -d '{"username":"Access-Key","password":"Secret-key"}'
           
        3. The following shows the response of a successful request. 

           {
           "token": "<JWT>",
           "message": "login_successful",
           "customerNames": [
           {
          "customerName": "Test",
          "tosAccepted": true
          }
         ]
        }

Let us consider the following example. 
 
  1. Following Access Key (Access Key ID + Secret Key) is created.
           Access Key ID : da3ab08b-c969-4db1-8f62-2a9b55f378cb
           Secret Key : rDkB36hahN8IReoUwJXICS2vf9w=

User-added image

        2.  Use the generated Access Key to run the following curl call to retrieve the JWT.

            curl -X POST \
            https://api.sg.prismacloud.io/login \
            -H 'Content-Type: application/json' \
            -d '{"username":"da3ab08b-c969-4db1-8f62-
            2a9b55f378cb","password":"rDkB36hahN8IReoUwJXICS2vf9w="}'           

User-added image

         3. The value for token in the response is the JWT used to authorize subsequent REST APIs.
 

Additional Information
Other users also viewed:
How to download GlobalProtect from the Customer Support Portal
Download and Install the GlobalProtect App for Windows
Resource List: GlobalProtect Configuring and Troubleshooting
PAN-OS Software Updates
Where to find the current preferred software versions? (PAN-OS, GlobalProtect, User-ID Agent, Plugins)
Results 1-5 of 239,896
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u0000004MQyCAM&lang=en_US&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language