Try SpotterManage TACACS+ Authentication in Radware Alteon
| "added in version" 2.9 of radware.radware_modules"
Authors: Leon Meguira (@leonmeguira), Nati Fridman (@natifridman)
stableinterface | supported by certified
Install with ansible-galaxy collection install radware.radware_modules:==0.6.12
collections:
- name: radware.radware_modules
version: 0.6.12Manage TACACS+ Authentication in Radware Alteon.
- name: alteon configuration command
radware.radware_modules.alteon_config_system_tacacs_auth:
provider:
server: 192.168.1.1
user: admin
password: admin
validate_certs: no
https_port: 443
ssh_port: 22
timeout: 5
state: present
parameters:
state: enabled
port: 49
primary_ip4_address: 10.10.1.1
secondary_ip4_address: 10.10.1.2
timeout_second: 10
retries: 2
primary_secret: secret
secondary_secret: secret
local_user_priority: localFirst
local_user_fallback: enabled
otp: disabled
command_authorization: enabled
privilege_level_mapping: enabled
command_logging_type: accounting
state:
choices:
- present
- absent
- read
- overwrite
- append
default: null
description:
- When C(present), guarantees that the object exists with the provided attributes.
- When C(absent), when applicable removes the object.
- When C(read), when exists read object from configuration to parameter format.
- When C(overwrite), removes the object if exists then recreate it
- When C(append), append object configuration with the provided parameters
required: true
provider:
description:
- Radware Alteon connection details.
required: true
suboptions:
https_port:
default: null
description:
- Radware Alteon https port.
required: true
password:
default: null
description:
- Radware Alteon password.
required: true
server:
default: null
description:
- Radware Alteon IP address.
required: true
ssh_port:
default: null
description:
- Radware Alteon ssh port.
required: true
timeout:
default: null
description:
- Timeout for connection.
required: true
user:
default: null
description:
- Radware Alteon username.
required: true
validate_certs:
default: null
description:
- If C(no), SSL certificates will not be validated.
- This should only set to C(no) used on personally controlled sites using self-signed
certificates.
required: true
type: bool
parameters:
description:
- Parameters for TACACS+ Authentication configuration.
suboptions:
command_authorization:
choices:
- enabled
- disabled
default: null
description:
- Specifies whether to enable TACACS+ command authorization.
required: false
command_logging:
choices:
- enabled
- disabled
default: null
description:
- Specifies whether to enable TACACS+ command logging.
required: false
command_logging_type:
choices:
- admin
- accounting
default: null
description:
- Specifies command logging type.
required: false
local_user_fallback:
choices:
- localFirst
- disabled
default: disabled
description:
- Specifies whether to enable TACACS+ secure backdoor for Telnet.
required: false
local_user_priority:
choices:
- localFirst
- disabled
default: disabled
description:
- Specifies that Alteon should first search for the user in the Local User Table,
and only if not found/authenticated there to connect to the remote authentication
server.
required: false
otp:
choices:
- enabled
- disabled
default: null
description:
- Enable/Disable OTP.
required: false
port:
default: 49
description:
- The TACACS+ port number.
required: false
type: int
primary_ip4_address:
default: null
description:
- The IP address of the primary TACACS+ server.
required: false
type: str
primary_ip6_address:
default: null
description:
- The IP address of the primary TACACS+ server.
required: false
type: str
primary_secret:
default: null
description:
- The TACACS+ authentication string.
required: false
type: str
privilege_level_mapping:
choices:
- enabled
- disabled
default: null
description:
- Specifies whether to enable TACACS+ new privilege level mapping.
required: false
retries:
default: null
description:
- Number of retries to the TACACS+ server.
required: false
type: int
secondary_ip4_address:
default: null
description:
- The IP address of the secondary TACACS+ server.
required: false
type: str
secondary_ip6_address:
default: null
description:
- The IP address of the secondary TACACS+ server.
required: false
type: str
secondary_secret:
default: null
description:
- The secondary TACACS+ authentication string.
required: false
type: str
state:
choices:
- enabled
- disabled
default: null
description:
- Specifies whether to enable TACACS+ authentication.
required: false
timeout_second:
default: null
description:
- The time, in seconds, before re-sending an authentication to the TACACS+ server
after receiving no answer.
required: false
type: int
revert_on_error:
default: false
description:
- If an error occurs, perform revert on alteon.
required: false
type: bool
write_on_change:
default: false
description:
- Executes Alteon write calls only when an actual change has been evaluated.
required: false
type: bool
obj: description: parameters object type returned: changed, read type: dictionary status: description: Message detailing run result returned: success sample: object deployed successfully type: str