I have an AD group I want to make read only Admins on the Palo Alto Firewalls.
I have the Role, and Mapping done, I have the enforcement policy in place, I think i'm getting hung up on the enforcement profile. as I don't know what type/name/variable would be.