CLI Reference¶
The pan-scm-cli command-line interface is organized into a logical structure that makes it easy to manage resources in Strata Cloud Manager.
Command Structure¶
All commands follow this pattern:
Where:
<action>: The operation to perform (set, delete, load, show, backup)<resource-type>: Category of resource (objects, deployment, network, security)<resource>: Specific resource type (address, address-group, zone, etc.)[options]: Resource-specific parameters and global options
Show Command Default Behavior
All show commands default to listing all items when no --name parameter is provided. The --list flag has been removed entirely for a more intuitive experience.
Available Commands¶
Objects¶
Commands for managing configuration objects:
Note: Bulk operations (
load,backup) use YAML files. See individual object docs for file formats.
| Command | Description |
|---|---|
scm set object address | Create or update an address object |
scm delete object address | Delete an address object |
scm load object address | Bulk import address objects from YAML |
scm show object address | Show/list address objects |
scm backup object address | Backup address objects to YAML |
scm set object address-group | Create or update an address group |
scm delete object address-group | Delete an address group |
scm load object address-group | Bulk import address groups from YAML |
scm show object address-group | Show/list address groups |
scm backup object address-group | Backup address groups to YAML |
scm set object application | Create or update an application |
scm delete object application | Delete an application |
scm load object application | Bulk import applications from YAML |
scm show object application | Show/list applications |
scm backup object application | Backup applications to YAML |
scm set object application-group | Create or update an application group |
scm delete object application-group | Delete an application group |
scm load object application-group | Bulk import application groups from YAML |
scm show object application-group | Show/list application groups |
scm backup object application-group | Backup application groups to YAML |
scm set object application-filter | Create or update an application filter |
scm delete object application-filter | Delete an application filter |
scm load object application-filter | Bulk import application filters from YAML |
scm show object application-filter | Show/list application filters |
scm backup object application-filter | Backup application filters to YAML |
scm set object dynamic-user-group | Create or update a dynamic user group |
scm delete object dynamic-user-group | Delete a dynamic user group |
scm load object dynamic-user-group | Bulk import dynamic user groups from YAML |
scm show object dynamic-user-group | Show/list dynamic user groups |
scm backup object dynamic-user-group | Backup dynamic user groups to YAML |
scm set object external-dynamic-list | Create or update an external dynamic list |
scm delete object external-dynamic-list | Delete an external dynamic list |
scm load object external-dynamic-list | Bulk import external dynamic lists from YAML |
scm show object external-dynamic-list | Show/list external dynamic lists |
scm backup object external-dynamic-list | Backup external dynamic lists to YAML |
scm set object hip-object | Create or update a HIP object |
scm delete object hip-object | Delete a HIP object |
scm load object hip-object | Bulk import HIP objects from YAML |
scm show object hip-object | Show/list HIP objects |
scm backup object hip-object | Backup HIP objects to YAML |
scm set object hip-profile | Create or update a HIP profile |
scm delete object hip-profile | Delete a HIP profile |
scm load object hip-profile | Bulk import HIP profiles from YAML |
scm show object hip-profile | Show/list HIP profiles |
scm backup object hip-profile | Backup HIP profiles to YAML |
scm set object http-server-profile | Create or update an HTTP server profile |
scm delete object http-server-profile | Delete an HTTP server profile |
scm load object http-server-profile | Bulk import HTTP server profiles from YAML |
scm show object http-server-profile | Show/list HTTP server profiles |
scm backup object http-server-profile | Backup HTTP server profiles to YAML |
scm set object log-forwarding-profile | Create or update a log forwarding profile |
scm delete object log-forwarding-profile | Delete a log forwarding profile |
scm load object log-forwarding-profile | Bulk import log forwarding profiles from YAML |
scm show object log-forwarding-profile | Show/list log forwarding profiles |
scm backup object log-forwarding-profile | Backup log forwarding profiles to YAML |
scm set object service | Create or update a service |
scm delete object service | Delete a service |
scm load object service | Bulk import services from YAML |
scm show object service | Show/list services |
scm backup object service | Backup services to YAML |
scm set object service-group | Create or update a service group |
scm delete object service-group | Delete a service group |
scm load object service-group | Bulk import service groups from YAML |
scm show object service-group | Show/list service groups |
scm backup object service-group | Backup service groups to YAML |
scm set object syslog-server-profile | Create or update a syslog server profile |
scm delete object syslog-server-profile | Delete a syslog server profile |
scm load object syslog-server-profile | Bulk import syslog server profiles from YAML |
scm show object syslog-server-profile | Show/list syslog server profiles |
scm backup object syslog-server-profile | Backup syslog server profiles to YAML |
scm set object tag | Create or update a tag |
scm delete object tag | Delete a tag |
scm load object tag | Bulk import tags from YAML |
scm show object tag | Show/list tags |
scm backup object tag | Backup tags to YAML |
Security¶
Commands for managing security policies:
| Command | Description |
|---|---|
scm set security rule | Create or update a security rule |
scm delete security rule | Delete a security rule |
scm load security rule | Bulk import security rules from YAML |
scm set security rule --move | Move a security rule position |
Network¶
Commands for managing network configurations:
| Command | Description |
|---|---|
scm set network security-zone | Create or update a security zone |
scm delete network security-zone | Delete a security zone |
scm load network security-zone | Bulk import security zones from YAML |
Deployment¶
Commands for managing deployment configurations:
| Command | Description |
|---|---|
scm set deployment bandwidth | Create or update bandwidth allocation |
scm delete deployment bandwidth | Delete a bandwidth allocation |
scm load deployment bandwidth | Bulk import bandwidth allocations from YAML |
scm set deployment bandwidth --assign | Assign bandwidth allocation to SPNs |
Global Options¶
Options that apply to all commands:
| Option | Description |
|---|---|
--help | Show help message for any command |
--version | Show the CLI version information |
--verbose | Enable verbose output for additional details |
--mock | Run in mock mode (no actual API connections) |
Working with the CLI¶
For more detailed examples and use cases, refer to the specific command documentation linked above or see the Getting Started guide.