/ home / chillancezen / chillancezen.fortimanager / 2.1.6 / module / fmgr_waf_profile_signature

chillancezen.fortimanager.fmgr_waf_profile_signature (2.1.6) — module

no description

| "added in version" 1.0.0 of chillancezen.fortimanager"

Authors: Link Zheng (@chillancezen), Jie Xue (@JieX19), Frank Shen (@fshen01), Hongbin Lu (@fgtdev-hblu)

preview | supported by community

Install collection

Install with ansible-galaxy collection install chillancezen.fortimanager:==2.1.6

Add to requirements.yml

  collections:
    - name: chillancezen.fortimanager
      version: 2.1.6

Description

This module is able to configure a FortiManager device.

Examples include all parameters and values which need to be adjusted to data sources before usage.

Usage examples

Scanned by Steampunk Spotter

 - hosts: fortimanager-inventory
   collections:
     - fortinet.fortimanager
   connection: httpapi
   vars:
      ansible_httpapi_use_ssl: True
      ansible_httpapi_validate_certs: False
      ansible_httpapi_port: 443
   tasks:
    - name: no description
      fmgr_waf_profile_signature:
         bypass_validation: False
         workspace_locking_adom: <value in [global, custom adom including root]>
         workspace_locking_timeout: 300
         rc_succeeded: [0, -2, -3, ...]
         rc_failed: [-2, -3, ...]
         adom: <your own value>
         profile: <your own value>
         waf_profile_signature:
            credit-card-detection-threshold: <value of integer>
            custom-signature:
              -
                  action: <value in [allow, block, erase]>
                  case-sensitivity: <value in [disable, enable]>
                  direction: <value in [request, response]>
                  log: <value in [disable, enable]>
                  name: <value of string>
                  pattern: <value of string>
                  severity: <value in [low, medium, high]>
                  status: <value in [disable, enable]>
                  target:
                    - arg
                    - arg-name
                    - req-body
                    - req-cookie
                    - req-cookie-name
                    - req-filename
                    - req-header
                    - req-header-name
                    - req-raw-uri
                    - req-uri
                    - resp-body
                    - resp-hdr
                    - resp-status
            disabled-signature: <value of string>
            disabled-sub-class: <value of string>
            main-class:
               action: <value in [allow, block, erase]>
               id: <value of integer>
               log: <value in [disable, enable]>
               severity: <value in [low, medium, high]>
               status: <value in [disable, enable]>

Outputs

request_url:
  description: The full url requested
  returned: always
  sample: /sys/login/user
  type: str
response_code:
  description: The status of api request
  returned: always
  sample: 0
  type: int
response_message:
  description: The descriptive message of the api response
  returned: always
  sample: OK.
  type: str