FireMon Security Manager

Details
Content
Dependencies
Version History

Creates a Policy Planner Ticket in Policy Planner Application and Validates Pre Changes assessments for new requirement.

Use FireMon Security Manager to create a Policy Planner Ticket and Verify Pre Changes Assessment for Rule Requirement

Configure FireMon SecurityManager on Cortex XSOAR

Navigate to Settings > Integrations > Servers & Services.
Search for FireMon Security Manager.
Click Add instance to create and configure a new integration instance.

Parameter	Description	Required
url	Server URL (e.g., https://www.test.com)	True
credentials	Username	True
insecure	Trust any certificate (not secure)	False
proxy	Use system proxy settings	False

Click Test to validate the URLs, token, and connection.

Commands

You can execute these commands from the CLI, as part of an automation, or in a playbook.
After you successfully execute a command, a DBot message appears in the War Room with the command details.

firemon-create-pp-ticket

Creates a new Policy Planner Ticket for PolicyPlanner in FMOS box.

Base Command

firemon-create-pp-ticket

Input

Argument Name	Description	Required
domain_id	Domain Id is required	Required
workflow_name	WorkFlow Name is required	Required
requirement	List of comma seperated requirements with [List of comma seperated Sources, List of comma seperated Destinations, List of comma seperated Services, Action]	Required
priority	Priority for the ticket,e.g., LOW, MEDIUM, HIGH	Required
due_date	Due Date is required	Required

Command Example

!firemon-create-pp-ticket domain_id=1 worflow_name="test WF" priority="LOW" due_date="2021-08-01T04:15-00:00" requirement=[{"sources":"1.1.1.1", "destinations":"2.2.2.2", "services":"http, tcp", "action":"ACCEPT"}]

firemon-pca

Validates and Return Pre Changes Assessment on Rules added as Requirement.

Base Command

firemon-pca

Input

Argument Name	Description	Required
domain_id	Domain Id is required	Required
device_group_id	Device Group Id is required	Required
sources	List of comma seperated sources	Required
destinations	List of comma seperated destinations	Required
services	List of comma seperated services	Required
action	Action is required	Required

Command Example

!firemon-pca domain_id=1 device_group_id=1 sources="1.1.1.1" destinations="2.2.2.2" services="http" action="ACCEPT"

Use FireMon Security Manager to create a Policy Planner Ticket and Verify Pre Changes Assessment for Rule Requirement

Configure FireMon SecurityManager on Cortex Navigate to Settings > Integrations > Servers & Services.

Search for FireMon Security Manager.
Click Add instance to create and configure a new integration instance.

Parameter	Description	Required
url	Server URL (e.g., https://www.test.com)	True
credentials	Username	True
insecure	Trust any certificate (not secure)	False
proxy	Use system proxy settings	False

Click Test to validate the URLs, token, and connection.

Commands

You can execute these commands from the CLI, as part of an automation, or in a playbook.
After you successfully execute a command, a DBot message appears in the War Room with the command details.

firemon-create-pp-ticket

Creates a new Policy Planner Ticket for PolicyPlanner in FMOS box.

Base Command

firemon-create-pp-ticket

Input

Argument Name	Description	Required
domain_id	Domain Id is required	Required
workflow_name	WorkFlow Name is required	Required
requirement	List of comma seperated requirements with [List of comma seperated Sources, List of comma seperated Destinations, List of comma seperated Services, Action]	Required
priority	Priority for the ticket,e.g., LOW, MEDIUM, HIGH	Required
due_date	Due Date is required	Required

Command Example

firemon-pca

Validates and Return Pre Changes Assessment on Rules added as Requirement.

Base Command

firemon-pca

Input

Argument Name	Description	Required
domain_id	Domain Id is required	Required
device_group_id	Device Group Id is required	Required
sources	List of comma seperated sources	Required
destinations	List of comma seperated destinations	Required
services	List of comma seperated services	Required
action	Action is required	Required

Command Example

!firemon-pca domain_id=1 device_group_id=1 sources="1.1.1.1" destinations="2.2.2.2" services="http" action="ACCEPT"

Incident Fields

Name	Description
Requirements	Enter list of requirement
Priority
PP Ticket Due Date
Device Group Id	Enter Device Group Id
Action	Select Required Action
Domain Id
Source	Enter multiple sources as comma separated values
Service	Enter multiple services as comma separated values
Destination	Enter multiple destinations as comma separated values
Workflow Name	Enter workflow Name

Incident Types

Name	Description
FireMon Policy Planner
FireMon Pre Change Assessment

Integrations

Name	Description
FireMon Security Manager (Community Contribution)	FireMon Security Manager delivers comprehensive rule lifecycle management to help you manage and automate every stage of the change management process. Workflows can be customized and automated to conform to your security goals and standards, with tools at your disposal to evolve policy and protection over time.

Layouts

Name	Description
FireMon Incident Pre Change Assessment	Layout for FireMon Pre Change Assessment
FireMon Incident Policy Planner	Layout for FireMon Policy Planner - Create PP Ticket

Playbooks

Name	Description
FireMon Create Policy Planner Ticket	Creates a new Policy Planner Ticket for PolicyPlanner in FMOS box.
FireMon Pre Change Assessment	Validates and Return Pre Changes Assessment on Rules added as Requirement.

Incident Fields

Name	Description
Domain Id
Device Group Id	Enter Device Group Id
Priority
Workflow Name	Enter workflow Name
Source	Enter multiple sources as comma separated values
Service	Enter multiple services as comma separated values
Requirements	Enter list of requirement
Destination	Enter multiple destinations as comma separated values
PP Ticket Due Date

Incident Types

Name	Description
FireMon Pre Change Assessment
FireMon Policy Planner

Integrations

Name	Description
FireMon Security Manager (Community Contribution)	FireMon Security Manager delivers comprehensive rule lifecycle management to help you manage and automate every stage of the change management process. Workflows can be customized and automated to conform to your security goals and standards, with tools at your disposal to evolve policy and protection over time.

Playbooks

Name	Description
FireMon Create Policy Planner Ticket	Creates a new Policy Planner Ticket for PolicyPlanner in FMOS box.
FireMon Pre Change Assessment	Validates and Return Pre Changes Assessment on Rules added as Requirement.

Required Content Packs (2)

Pack Name	Pack By
Base	By: Cortex XSOAR
Common Scripts	By: Cortex XSOAR

Optional Content Packs (2)

Pack Name	Pack By
Common Types	By: Cortex XSOAR
Phishing	By: Cortex XSOAR

All level dependencies (3)

Pack Name	Pack By
Common Scripts	By: Cortex XSOAR
Base	By: Cortex XSOAR
Cortex REST API	By: Cortex XSOAR

PUBLISHER

PLATFORMS

Cortex XSOARCortex XSIAM

INFO

Supported By	Community
Created	November 14, 2021
Last Release	October 20, 2025

WORKS WITH THE FOLLOWING INTEGRATIONS:

DISCLAIMER

Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise.