This page is excellent for deploying Palo.

In particular, after deploying the Palo instance, you will need to use SSH to access the CLI to set the Admin password. This will allow you to access the web GUI.

• Unordered List ItemOnce the instance is running, connect to it using a SSH client with the private key file used to launch the instance.
• For example: ssh -i <privatekey.pem> admin@<EIP or private IP of eth0>
• Then use the PAN-OS CLI commands
  • Unordered List Itemconfigure
  • set mgt-config users admin password
  • commit

If you are using Putty, you will need to convert the PEM key file to PPK. * Start PuTTYgen (for example, from the Start menu, choose All Programs > PuTTY > PuTTYgen). * Under Type of key to generate, choose RSA. (If you're using an older version of PuTTYgen, choose SSH-2 RSA. ) * Choose Load. By default, PuTTYgen displays only files with the extension .ppk. To locate your .pem file, select the option to display files of all types. * Select your .pem file for the key pair that you specified when you launched your instance, and then choose Open. Choose OK to dismiss the confirmation dialog box. * Choose Save private key to save the key in the format that PuTTY can use. PuTTYgen displays a warning about saving the key without a passphrase. Choose Yes. * Specify the same name for the key that you used for the key pair (for example, my-key-pair). PuTTY automatically adds the .ppk file extension. * Your private key is now in the correct format for use with PuTTY. You can now connect to your instance using PuTTY's SSH client.

'Note': A passphrase on a private key is an extra layer of protection, so even if your private key is discovered, it can't be used without the passphrase. The downside to using a passphrase is that it makes automation harder because human intervention is needed to log on to an instance, or copy files to an instance.