Skip to main content

DNS Security APIs

The DNS Security API provides Palo Alto Networks customers with an active DNS Security subscription with the ability to access information about domains processed by DNS Security through a programmatic RESTful API.

Before using the DNS Security API, please refer to Cloud-Delivered Security Services API Developer's docs for more information about using the API, including authentication details, access limits, and examples.


The DNS Security API is currently in BETA. To inquire about joining the beta or to receive support or provide suggestions, please contact

Things to consider:

  • To make DNS Security API requests, you must retrieve your DNS Security API key, which is used to authenticate API calls. An organization (and corresponding superuser) can have a single API key at any given time, regardless of the number of users tied to the account.
  • You must have an activated and unexpired DNS Security subscription to access a DNS Security API key.
  • The number of API requests that can be submitted is throttled on a per API key basis. To control the number of requests you can make, you need to observe DNS Security API Access Limits.