Define Palo Alto Networks Approval Rules

  • Release version: Australia
  • Updated March 12, 2026
  • 1 minute to read

    • Activate approval workflows to require approval or rejection of EDL entries before they take effect.

    Before you begin

    Role required: sn_sec_tisc.admin

    Important:
    Save the newly configured Palo Alto Networks configuration before proceeding.

    About this task

    As a TISC admin, you define these approval rules to grant consent on approval requests. You can also define multiple levels of approval.

    Procedure

    1. Navigate to the EDL Approval Rules section.
    2. Select New to create an approval rule.
      The following rules are the preconfigured rules in the base system for the Palo Alto Networks - Firewall integration.
      Table 1. Preconfigured Approval Rules
      Name Description EDL Action
      Approval rule for adding to EDL Activates the approval workflow for adding entries to EDL. Add to EDL
      Approval rule for removing from EDL Activates the approval workflow for removing entries from EDL. Remove from EDL
    3. Fill in the form fields as appropriately.
      Table 2. Create EDL Approval Rules
      Field Description
      Name Name of the approval rule.
      EDL Action Option to add or remove the EDL entry.
      EDLs Select the EDLs that require approval. If you leave this empty, it includes all EDLs.
      Description Description for the approval rule.
      Select User or Groups requiring approval
      User(s) User(s) that require approval.
      Group(s) Group(s) that require approval.
      Select approver(s)
      User(s) User(s) for approval.
      Group(s) Group(s) for approval.
      Notifications
      Notify requester on approval When selected, notifies the requester on approval of EDLs.
      Notify requester on rejection When selected, notifies the requester on rejection of EDLs.
    4. Select Save to validate and save the approval rule.
    5. Select Enable to enable the approval rule.