radware.radware_modules.alteon_config_system_management_access (0.6.12) — module

Install collection

Install with ansible-galaxy collection install radware.radware_modules:==0.6.12

Add to requirements.yml

  collections:
    - name: radware.radware_modules
      version: 0.6.12

Description

Manage management access in Radware Alteon.

Requirements

• alteon-sdk

Usage examples

Scanned by Steampunk Spotter

• Success
  Steampunk Spotter scan finished with no errors, warnings or hints.

- name: alteon configuration command
  radware.radware_modules.alteon_config_system_management_access:
    provider: 
      server: 192.168.1.1
      user: admin
      password: admin
      validate_certs: no
      https_port: 443
      ssh_port: 22
      timeout: 5
    state: present
    parameters:
      telnet_state: enabled
      cli_hostname_prompt: enabled
      idle_timeout_minute: 800
      gateway_health_check: arp
      https_ssl_tls1_0: disabled
      dns_traffic_port: data
      dp_signaling_traffic_port: data
      data_ports_allow_mng:
        - 1
        - 2
      management4_nets:
        - ip_address: 192.0.0.0
          ip_subnet: 255.0.0.0
          protocols: sshTelnetHttpsSnmp
        - ip_address: 172.16.0.0
          ip_subnet: 255.255.0.0

Inputs

    
state:
    choices:
    - present
    - absent
    - read
    - overwrite
    - append
    default: null
    description:
    - When C(present), guarantees that the object exists with the provided attributes.
    - When C(absent), when applicable removes the object.
    - When C(read), when exists read object from configuration to parameter format.
    - When C(overwrite), removes the object if exists then recreate it
    - When C(append), append object configuration with the provided parameters
    required: true

provider:
    description:
    - Radware Alteon connection details.
    required: true
    suboptions:
      https_port:
        default: null
        description:
        - Radware Alteon https port.
        required: true
      password:
        default: null
        description:
        - Radware Alteon password.
        required: true
      server:
        default: null
        description:
        - Radware Alteon IP address.
        required: true
      ssh_port:
        default: null
        description:
        - Radware Alteon ssh port.
        required: true
      timeout:
        default: null
        description:
        - Timeout for connection.
        required: true
      user:
        default: null
        description:
        - Radware Alteon username.
        required: true
      validate_certs:
        default: null
        description:
        - If C(no), SSL certificates will not be validated.
        - This should only set to C(no) used on personally controlled sites using self-signed
          certificates.
        required: true
        type: bool

parameters:
    description:
    - Parameters management access configuration.
    suboptions:
      cdp_traffic_port:
        choices:
        - data
        - mgmt
        default: data
        description:
        - Specifies whether CDP access is over a data port or the management port.
        required: false
      cli_hostname_prompt:
        choices:
        - enabled
        - disabled
        default: disabled
        description:
        - Enable or disable CLI hostname prompt.
        required: false
      cli_login_banner:
        default: null
        description:
        - The user-defined login banner.
        required: false
        type: str
      cli_login_notice:
        default: null
        description:
        - The user-defined login notice.
        required: false
        type: str
      data_ports_allow_mng:
        default: null
        description:
        - Data port access for management traffic.
        elements: int
        required: false
        type: list
      dns_traffic_port:
        choices:
        - data
        - mgmt
        default: data
        description:
        - Specifies whether DNS access is over a data port or the management port.
        required: false
      dp_signaling_traffic_port:
        choices:
        - data
        - mgmt
        default: data
        description:
        - Specifies whether access of DefensePro signaling servers for Web security is
          over a data port or the management port.
        required: false
      gateway_health_check:
        choices:
        - arp
        - icmp
        default: null
        description:
        - The type of gateway health check.
        required: false
      gateway_health_check_interval:
        default: null
        description:
        - The time, in seconds, between gateway health checks.
        required: false
        type: int
      gateway_health_check_retries:
        default: null
        description:
        - The number of gateway-health-checks attempts before considering the gateway
          down.
        required: false
        type: int
      https_cert_name:
        default: null
        description:
        - HTTPS certificate name
        required: false
        type: str
      https_intermediate_chain_name:
        default: null
        description:
        - Intermediate CA certificate name.
        required: false
        type: str
      https_intermediate_chain_type:
        choices:
        - group
        - cert
        - none
        default: none
        description:
        - Select the Intermediate CA type.
        required: false
      https_port:
        default: null
        description:
        - The TCP port number that the HTTPS server listens to.
        required: false
        type: int
      https_ssl_tls1_0:
        choices:
        - enabled
        - disabled
        default: disabled
        description:
        - Allowe TLS 1.0 for the management connection.
        required: false
      https_ssl_tls1_1:
        choices:
        - enabled
        - disabled
        default: enabled
        description:
        - Allowe TLS 1.1 for the management connection.
        required: false
      https_ssl_tls1_2:
        choices:
        - enabled
        - disabled
        default: enabled
        description:
        - Allowe TLS 1.2 for the management connection.
        required: false
      https_ssl_tls1_3:
        choices:
        - enabled
        - disabled
        default: enabled
        description:
        - Allowe TLS 1.3 for the management connection.
        required: false
      https_state:
        choices:
        - enabled
        - disabled
        default: null
        description:
        - Specifies whether to enable Alteon-device management over HTTPS.
        required: false
      idle_timeout_minute:
        default: 20
        description:
        - The idle timeout, in minutes, for CLI sessions.
        required: false
        type: int
      language_display:
        choices:
        - english
        - chinese
        - korean
        - japanese
        default: english
        description:
        - Sets the global default language for the Alteon Web Based Management (WBM) interface.
        - Sets the Alteon Web Based Management (WBM) interface language for a local user.
        required: false
      management4_nets:
        default: null
        description:
        - Allowed protocols per IPv4 network.
        elements: dict
        required: false
        suboptions:
          ip_address:
            default: null
            description:
            - The IPv4 management network address.
            required: false
            type: str
          ip_subnet:
            default: null
            description:
            - The management network mask.
            required: false
            type: str
          protocols:
            choices:
            - ssh
            - telnet
            - sshTelnet
            - http
            - sshHttp
            - telnetHttp
            - sshTelnetHttp
            - https
            - sshHttps
            - httpsTelnet
            - sshTelnetHttps
            - httpHttps
            - sshHttpHttps
            - telnetHttpHttps
            - sshTelnetHttpHttps
            - snmp
            - sshSnmp
            - telnetSnmp
            - sshTelnetSnmp
            - httpSnmp
            - sshHttpSnmp
            - telnetHttpSnmp
            - sshTelnetHttpSnmp
            - httpsSnmp
            - sshHttpsSnmp
            - telnetHttpsSnmp
            - sshTelnetHttpsSnmp
            - httpHttpsSnmp
            - sshHttpHttpsSnmp
            - telnetHttpHttpsSnmp
            - sshTelnetHttpHttpsSnmp
            - report
            - sshreport
            - telnetreport
            - sshTelnetreport
            - httpreport
            - sshHttpreport
            - telnetHttpreport
            - sshTelnetHttpreport
            - httpsreport
            - sshHttpsreport
            - httpsTelnetreport
            - sshTelnetHttpsreport
            - httpHttpsreport
            - sshHttpHttpsreport
            - telnetHttpHttpsreport
            - sshTelnetHttpHttpsreport
            - snmpreport
            - sshSnmpreport
            - telnetSnmpreport
            - sshTelnetSnmpreport
            - httpSnmpreport
            - sshHttpSnmpreport
            - telnetHttpSnmpreport
            - sshTelnetHttpSnmpreport
            - httpsSnmpreport
            - sshHttpsSnmpreport
            - telnetHttpsSnmpreport
            - sshTelnetHttpsSnmpreport
            - httpHttpsSnmpreport
            - sshHttpHttpsSnmpreport
            - telnetHttpHttpsSnmpreport
            - sshTelnetHttpHttpsSnmpreport
            - none
            default: null
            description:
            - Allowed Protocols per IPv4 Network Parameters.
            required: false
        type: list
      management6_nets:
        default: null
        description:
        - Allowed protocols per IPv6 network.
        elements: dict
        required: false
        suboptions:
          ip_address:
            default: null
            description:
            - The IPv6 management network address.
            required: false
            type: str
          ip_prefix:
            default: null
            description:
            - The IPv6 management network prefix.
            required: false
            type: str
          protocols:
            choices:
            - ssh
            - telnet
            - sshTelnet
            - http
            - sshHttp
            - telnetHttp
            - sshTelnetHttp
            - https
            - sshHttps
            - httpsTelnet
            - sshTelnetHttps
            - httpHttps
            - sshHttpHttps
            - telnetHttpHttps
            - sshTelnetHttpHttps
            - snmp
            - sshSnmp
            - telnetSnmp
            - sshTelnetSnmp
            - httpSnmp
            - sshHttpSnmp
            - telnetHttpSnmp
            - sshTelnetHttpSnmp
            - httpsSnmp
            - sshHttpsSnmp
            - telnetHttpsSnmp
            - sshTelnetHttpsSnmp
            - httpHttpsSnmp
            - sshHttpHttpsSnmp
            - telnetHttpHttpsSnmp
            - sshTelnetHttpHttpsSnmp
            - report
            - sshreport
            - telnetreport
            - sshTelnetreport
            - httpreport
            - sshHttpreport
            - telnetHttpreport
            - sshTelnetHttpreport
            - httpsreport
            - sshHttpsreport
            - httpsTelnetreport
            - sshTelnetHttpsreport
            - httpHttpsreport
            - sshHttpHttpsreport
            - telnetHttpHttpsreport
            - sshTelnetHttpHttpsreport
            - snmpreport
            - sshSnmpreport
            - telnetSnmpreport
            - sshTelnetSnmpreport
            - httpSnmpreport
            - sshHttpSnmpreport
            - telnetHttpSnmpreport
            - sshTelnetHttpSnmpreport
            - httpsSnmpreport
            - sshHttpsSnmpreport
            - telnetHttpsSnmpreport
            - sshTelnetHttpsSnmpreport
            - httpHttpsSnmpreport
            - sshHttpHttpsSnmpreport
            - telnetHttpHttpsSnmpreport
            - sshTelnetHttpHttpsSnmpreport
            - none
            default: null
            description:
            - Allowed Protocols per IPv6 Network Parameters.
            required: false
        type: list
      management_ip4_address:
        default: null
        description:
        - The management IPv4 address.
        required: false
        type: str
      management_ip4_gateway:
        default: null
        description:
        - The default gateway IP address.
        required: false
        type: str
      management_ip4_subnet:
        default: null
        description:
        - The IPv4 subnet mask
        required: false
        type: str
      management_ip6_address:
        default: null
        description:
        - The management IPv6 address.
        required: false
        type: str
      management_ip6_gateway:
        default: null
        description:
        - The default gateway IP address.
        required: false
        type: str
      management_ip6_prefix:
        default: null
        description:
        - The IPv6 prefix.
        required: false
        type: int
      management_port_autonegotiation:
        choices:
        - true
        - false
        default: true
        description:
        - Specifies whether to enable auto-negotiation.
        required: false
      management_port_duplex:
        choices:
        - full
        - half
        - any
        default: any
        description:
        - Management port duplex.
        required: false
      management_port_speed:
        choices:
        - mbs10
        - mbs100
        - mbs1000
        - any
        default: any
        description:
        - Management port speed.
        required: false
      management_port_state:
        choices:
        - enabled
        - disabled
        default: null
        description:
        - Specifies whether to enable the management port.
        required: false
      ntp_traffic_port:
        choices:
        - data
        - mgmt
        default: data
        description:
        - Specifies whether NTP access is over a data port or the management port.
        required: false
      ocsp_traffic_port:
        choices:
        - data
        - mgmt
        default: data
        description:
        - Specifies whether OCSP access is over a data port or the management port.
        required: false
      radius_traffic_port:
        choices:
        - data
        - mgmt
        default: data
        description:
        - Specifies whether RADIUS server access is over a data port or the management
          port.
        required: false
      single_ip_cloud_mode:
        choices:
        - unsupported
        - enabled
        - disabled
        default: null
        description:
        - Enable/disable Single IP operation mode.
        required: false
      smtp_traffic_port:
        choices:
        - data
        - mgmt
        default: data
        description:
        - Specifies whether SMTP access is over a data port or the management port.
        required: false
      snmp_traffic_port:
        choices:
        - data
        - mgmt
        default: data
        description:
        - Specifies whether SNMP trap host access is over a data port or the management
          port.
        required: false
      ssh_port:
        default: 22
        description:
        - The number of the SSH server port.
        required: false
        type: int
      ssh_scp_apply_save:
        choices:
        - enabled
        - disabled
        default: null
        description:
        - Specifies whether to enable SCP Apply and Save.
        required: false
      ssh_state:
        choices:
        - enabled
        - disabled
        default: enabled
        description:
        - Specifies whether to enable Alteon-device management over SSH.
        required: false
      ssh_version1:
        choices:
        - enabled
        - disabled
        default: null
        description:
        - Specifies whether to enable SSH Version 1.
        required: false
      syslog_traffic_port:
        choices:
        - data
        - mgmt
        default: data
        description:
        - Specifies whether syslog host access is over a data port or the management port.
        required: false
      tacacs_traffic_port:
        choices:
        - data
        - mgmt
        default: data
        description:
        - Specifies whether TACACS+ server access is over a data port or the management
          port.
        required: false
      telnet_port:
        default: 23
        description:
        - The TCP port number that the Telnet management listens for Telnet sessions.
        required: false
        type: int
      telnet_state:
        choices:
        - enabled
        - disabled
        default: null
        description:
        - Specifies whether to enable Alteon-device management over Telnet.
        required: false
      tftp_traffic_port:
        choices:
        - data
        - mgmt
        default: data
        description:
        - Specifies whether TFTP access is over a data port or the management port.
        required: false
      webapp_ldap_traffic_port:
        choices:
        - data
        - mgmt
        default: data
        description:
        - Specifies whether access of LDAP servers for Web security is over a data port
          or the management port.
        required: false
      webapp_radius_traffic_port:
        choices:
        - data
        - mgmt
        default: data
        description:
        - Specifies whether access of RADIUS servers for Web security is over a data port
          or the management port.
        required: false
      wlm_sasp_traffic_port:
        choices:
        - data
        - mgmt
        default: data
        description:
        - Specifies whether WLM SASP is over a data port or the management port.
        required: false

revert_on_error:
    default: false
    description:
    - If an error occurs, perform revert on alteon.
    required: false
    type: bool

write_on_change:
    default: false
    description:
    - Executes Alteon write calls only when an actual change has been evaluated.
    required: false
    type: bool

Outputs

obj:
  description: parameters object type
  returned: changed, read
  type: dictionary
status:
  description: Message detailing run result
  returned: success
  sample: object deployed successfully
  type: str