To authenticate your queries to the WildFire API, you must Get Your API Key. Access to the WildFire API key is available if:

You can share the same API key within your organization. Your WildFire public cloud API key is assigned when you purchase your WildFire (either firewall-attached or as a standalone WildFire API subscription), Prisma Cloud Compute, or Prisma Access subscription and expires when the expiration date is reached. If you have multiple firewalls with WildFire subscriptions, the API key is tied to the subscription that expires last. You cannot delete a WildFire public cloud API key; it only expires. If you need a WildFire public cloud API key removed for security reasons, you must open a support case.

The API key for the WildFire public cloud is displayed in the My Account section of the WildFire portal along with statistics, such as how many uploads and queries have been performed using the key. Alternatively, you can also retrieve your API key from the Palo Alto Networks Support Portal located under the WildFireWildFire API Assets page.

If you have a firewall-attached WildFire subscription, you can view and Manage WildFire Appliance API Keys through the WildFire CLI. The API key should be considered secret and should not be shared outside of authorized channels.

The API methods are hosted on the WildFire cloud or WildFire appliance and the HTTPS protocol is required to protect your API key and any other data exchanged with the service.