fortinet / fortinet.fortios / 1.1.7 / module / fortios_log_fortianalyzer3_override_setting Override FortiAnalyzer settings in Fortinet's FortiOS and FortiGate. | "added in version" 2.9 of fortinet.fortios" Authors: Link Zheng (@chillancezen), Jie Xue (@JieX19), Hongbin Lu (@fgtdev-hblu), Frank Shen (@frankshen01), Miguel Angel Munoz (@mamunozgonzalez), Nicolas Thomas (@thomnico) preview | supported by communityfortinet.fortios.fortios_log_fortianalyzer3_override_setting (1.1.7) — module
Install with ansible-galaxy collection install fortinet.fortios:==1.1.7
collections: - name: fortinet.fortios version: 1.1.7
This module is able to configure a FortiGate or FortiOS (FOS) device by allowing the user to set and modify log_fortianalyzer3 feature and override_setting category. Examples include all parameters and values need to be adjusted to datasources before usage. Tested with FOS v6.4.0
- hosts: fortigates collections: - fortinet.fortios connection: httpapi vars: vdom: "root" ansible_httpapi_use_ssl: yes ansible_httpapi_validate_certs: no ansible_httpapi_port: 443 tasks: - name: Override FortiAnalyzer settings. fortios_log_fortianalyzer3_override_setting: vdom: "{{ vdom }}" log_fortianalyzer3_override_setting: access_config: "enable" certificate: "<your_own_value> (source certificate.local.name)" certificate_verification: "enable" conn_timeout: "6" enc_algorithm: "high-medium" hmac_algorithm: "sha256" ips_archive: "enable" max_log_rate: "10" monitor_failure_retry_period: "11" monitor_keepalive_period: "12" priority: "default" reliable: "enable" serial: - name: "default_name_16" server: "192.168.100.40" source_ip: "84.230.14.43" ssl_min_proto_version: "default" status: "enable" upload_day: "<your_own_value>" upload_interval: "daily" upload_option: "store-and-upload" upload_time: "<your_own_value>" use_management_vdom: "enable"
vdom: default: root description: - Virtual domain, among those defined previously. A vdom is a virtual instance of the FortiGate that can be configured and used as a different unit. type: str access_token: description: - Token-based authentication. Generated from GUI of Fortigate. required: false type: str log_fortianalyzer3_override_setting: default: null description: - Override FortiAnalyzer settings. suboptions: access_config: choices: - enable - disable description: - Enable/disable FortiAnalyzer access to configuration and data. type: str certificate: description: - Certificate used to communicate with FortiAnalyzer. Source certificate.local.name. type: str certificate_verification: choices: - enable - disable description: - Enable/disable identity verification of FortiAnalyzer by use of certificate. type: str conn_timeout: description: - FortiAnalyzer connection time-out in seconds (for status and log buffer). type: int enc_algorithm: choices: - high-medium - high - low description: - Configure the level of SSL protection for secure communication with FortiAnalyzer. type: str hmac_algorithm: choices: - sha256 - sha1 description: - FortiAnalyzer IPsec tunnel HMAC algorithm. type: str ips_archive: choices: - enable - disable description: - Enable/disable IPS packet archive logging. type: str max_log_rate: description: - FortiAnalyzer maximum log rate in MBps (0 = unlimited). type: int monitor_failure_retry_period: description: - Time between FortiAnalyzer connection retries in seconds (for status and log buffer). type: int monitor_keepalive_period: description: - Time between OFTP keepalives in seconds (for status and log buffer). type: int priority: choices: - default - low description: - Set log transmission priority. type: str reliable: choices: - enable - disable description: - Enable/disable reliable logging to FortiAnalyzer. type: str serial: description: - Serial numbers of the FortiAnalyzer. suboptions: name: description: - Serial Number. required: true type: str type: list server: description: - The remote FortiAnalyzer. type: str source_ip: description: - Source IPv4 or IPv6 address used to communicate with FortiAnalyzer. type: str ssl_min_proto_version: choices: - default - SSLv3 - TLSv1 - TLSv1-1 - TLSv1-2 description: - Minimum supported protocol version for SSL/TLS connections . type: str status: choices: - enable - disable description: - Enable/disable logging to FortiAnalyzer. type: str upload_day: description: - Day of week (month) to upload logs. type: str upload_interval: choices: - daily - weekly - monthly description: - Frequency to upload log files to FortiAnalyzer. type: str upload_option: choices: - store-and-upload - realtime - 1-minute - 5-minute description: - Enable/disable logging to hard disk and then uploading to FortiAnalyzer. type: str upload_time: description: - Time to upload logs (hh:mm). type: str use_management_vdom: choices: - enable - disable description: - Enable/disable use of management VDOM IP address as source IP for logs sent to FortiAnalyzer. type: str type: dict
build: description: Build number of the fortigate image returned: always sample: '1547' type: str http_method: description: Last method used to provision the content into FortiGate returned: always sample: PUT type: str http_status: description: Last result given by FortiGate on last operation applied returned: always sample: '200' type: str mkey: description: Master key (id) used in the last call to FortiGate returned: success sample: id type: str name: description: Name of the table used to fulfill the request returned: always sample: urlfilter type: str path: description: Path of the table used to fulfill the request returned: always sample: webfilter type: str revision: description: Internal revision number returned: always sample: 17.0.2.10658 type: str serial: description: Serial number of the unit returned: always sample: FGVMEVYYQT3AB5352 type: str status: description: Indication of the operation's result returned: always sample: success type: str vdom: description: Virtual domain used returned: always sample: root type: str version: description: Version of the FortiGate returned: always sample: v5.6.3 type: str