Welcome to the Cato Connect Community

Discuss, share, and learn from peers using Cato Networks platform to make all the SASE difference.

Explore the Community

Cato Cloud

Cato and SASE discussions and best practices.

API

API questions-and-answers, discussions, and best practices.

Community Help

Start here with any Cato Connect questions! Community guides and information.

Recent Content

Account Access Request's mutation API
Hi everyone, The new account access request method enables us to manage permissions flexibly, but has also complicated the workflow. Manually requesting permissions for multiple support members and order members when an account is created is a significant burden. We are considering whether this could be simplified using the API, but we have not found any relevant commands. Have these been implemented, or being planning? Thank you,
DCL_SysAdmin
Making Connections
4 days agoPlace API Discussions
92Views
1like
10Comments
Add Interface Subnets to User Defined Groups
Hi, using the Cato API is it possible to add Site Interface Subnets to a user defined group? The use case here would be to create a script that creates a Site, creates routes networks, and then adds those routed networks to several groups. I checked the API documentation, but didn't see any options initially. Thanks!
Solved
Jeremy
Joining the Conversation
5 days agoPlace API Discussions
50Views
1like
3Comments
Python script to add or delete a network in a site
Hy, I am trying to create a Python script to delete a network from one site and create it on another site. Do you have any examples of Python scripts available to make these changes? This page https://support.catonetworks.com/hc/en-us/articles/360013823477-Example-Scripts-Using-the-Cato-API-with-Python no longer exists. Best regards, Maël JAUBERT
MaelJ
Making Connections
5 days agoPlace API Discussions
7Views
0likes
1Comment
Custom Category creation via API/Terraform
I need to create `Custom Category` via code. Is there API/Terraform resource available for this? I couldn't find it in the docs.
DevS
Joining the Conversation
6 days agoPlace API Discussions
27Views
0likes
1Comment
Is there any way to know the actual service signature?
Hi, "Standard Ports" information on the App Catalog is not the actual service signature. This is very difficult to configure firewall rules as I wish. Is there any way to know the actual service signature on demand? Thank you,
Kodama
Making Connections
7 days agoPlace Discussions
security
6Views
0likes
0Comments
Need help with prelogin Intune deployment
Hello, I need to understand how to get prelogin to work for my environment so users can sign in when off of the network. We are deploying devices from intune using the enrollment status page. So it gets deployed to them, they turn it on and it autopilots from there. The cato sdp client is being deployed with patchmypc and has a script in place with that for the required registry keys. The certificates are being deployed inside of a win32 intune win file with a script to install the certificate. Script for the certificate: yes it is password protected pfx file. (We do not have a certificate authority. (This did work for prelogin on my device.) Import-PfxCertificate -FilePath .\Catoprelogin.pfx -Password (ConvertTo-SecureString -String 'mypassword' -AsPlainText -Force) -CertStoreLocation Cert:\CurrentUser\My All of this was successfully installed, what could I be missing? The certificate is an SSL certificate and I confirmed that it worked prior to the autopilot on my personal work computer without autopiloting it. DOES ANYONE HAVE ADVICE OR SUGGESTIONS ON HOW TO SETUP THE INTUNE AUTOPILOT PROFILE, ENROLLMENT STATUS PAGE, OR ANY OF THE ABOVE TO MAKE THIS WORK? WHETHER IT IS DEPLOYING THE CERT A DIFFERENT WAY OR DEPLOYING THE CERTIFICATE WITH THE CATO CLIENT APPLICATION INSTALL. Thanks,
Perschall2022
Joining the Conversation
12 days agoPlace Discussions
526Views
0likes
10Comments
API call to return number of current SDP sessions?
I was wondering if there is an API call to return the number of current SDP sessions? I am able to return the list of connected sessions and count them, but I was wondering if there is a more direct way to just return the number directly. Thanks.
ddaniel
Making Connections
13 days agoPlace API Discussions
136Views
3likes
4Comments
Cato Client - manual PoP addressing
Has anyone tried scripting to change the manual pop location so the user can run the script and it will change their client manual pop address to a specific location. Not sure where this detail is stored on windows for the client, regkey or config file? Even a cato cli client with a switch to set it? I tried using fqdns as the pop name and having it resolve to a PoP IP in the hosts file, then using a script to change the hosts file entry to the desired PoP IP.... but the client cant use fqdns as the PoP to connect to :D
FlowBeer
Joining the Conversation
13 days agoPlace Discussions
38Views
0likes
6Comments
Is there an API applicable to IP Ranges in the Resources topic?
Hello. We need to create about 4,000 objects in IP Ranges, is there an API available for this? thanks.
Solved
ESCARE-Team
Making Connections
14 days agoPlace API Discussions
155Views
0likes
11Comments
AI for firewall rules?
I would have expected the Cato AI Assistant to be able to answer relatively simple questions in the account context like "does user x have access to the configured host y over HTTPS" - but that does not appear to be the case. Is the MCP server be able to manage such What-If queries?
JM
Staying Involved
17 days agoPlace Discussions
17Views
1like
1Comment