drmofu / drmofu.fortianalyzer / 1.3.0 / module / faz_cli_system_csf_trustedlist Pre-authorized and blocked security fabric nodes. | "added in version" 1.3.0 of drmofu.fortianalyzer" Authors: Xinwei Du (@dux-fortinet), Link Zheng (@chillancezen), Jie Xue (@JieX19), Frank Shen (@fshen01), Hongbin Lu (@fgtdev-hblu) preview | supported by communitydrmofu.fortianalyzer.faz_cli_system_csf_trustedlist (1.3.0) — module
Install with ansible-galaxy collection install drmofu.fortianalyzer:==1.3.0
collections: - name: drmofu.fortianalyzer version: 1.3.0
This module is able to configure a FortiAnalyzer device.
Examples include all parameters and values which need to be adjusted to data sources before usage.
- hosts: fortianalyzer_inventory collections: - fortinet.fortianalyzer connection: httpapi vars: ansible_httpapi_use_ssl: True ansible_httpapi_validate_certs: False ansible_httpapi_port: 443 tasks: - name: Pre-authorized and blocked security fabric nodes. faz_cli_system_csf_trustedlist: bypass_validation: False rc_succeeded: [0, -2, -3, ...] rc_failed: [-2, -3, ...] state: <value in [present, absent]> cli_system_csf_trustedlist: action: <value in [accept, deny]> authorization-type: <value in [serial, certificate]> certificate: <value of string> downstream-authorization: <value in [disable, enable]> ha-members: <value of string> index: <value of integer> name: <value of string> serial: <value of string>
state: choices: - present - absent description: The directive to create, update or delete an object required: true type: str log_path: default: /tmp/fortianalyzer.ansible.log description: - The path to save log. Used if enable_log is true. - Please use absolute path instead of relative path. - If the log_path setting is incorrect, the log will be saved in /tmp/fortianalyzer.ansible.log required: false type: str rc_failed: description: the rc codes list with which the conditions to fail will be overriden elements: int required: false type: list enable_log: default: false description: Enable/Disable logging for task required: false type: bool access_token: description: The token to access FortiManager without using username and password. required: false type: str rc_succeeded: description: the rc codes list with which the conditions to succeed will be overriden elements: int required: false type: list proposed_method: choices: - set - update - add description: The overridden method for the underlying Json RPC request required: false type: str bypass_validation: default: false description: only set to True when module schema diffs with FortiAnalyzer API structure, module continues to execute without validating parameters required: false type: bool forticloud_access_token: description: Authenticate Ansible client with forticloud API access token. required: false type: str cli_system_csf_trustedlist: description: the top level parameters set required: false suboptions: action: choices: - accept - deny description: - Security fabric authorization action. - accept - Accept authorization request. - deny - Deny authorization request. type: str authorization-type: choices: - serial - certificate description: - Authorization type. - serial - Verify downstream by serial number. - certificate - Verify downstream by certificate. type: str certificate: description: Certificate. type: str downstream-authorization: choices: - disable - enable description: - Trust authorizations by this nodes administrator. - disable - Disable downstream authorization. - enable - Enable downstream authorization. type: str ha-members: description: HA members. type: str index: description: Index of the downstream in tree. type: int name: description: Name. type: str serial: description: Serial. type: str type: dict
meta: contains: request_url: description: The full url requested returned: always sample: /sys/login/user type: str response_code: description: The status of api request returned: always sample: 0 type: int response_data: description: The api response returned: always type: list response_message: description: The descriptive message of the api response returned: always sample: OK. type: str system_information: description: The information of the target system. returned: always type: dict description: The result of the request. returned: always type: dict rc: description: The status the request. returned: always sample: 0 type: int version_check_warning: description: Warning if the parameters used in the playbook are not supported by the current fortianalyzer version. returned: complex type: list